Lucene search

[email protected]CVE-2005-0175

HistoryFeb 07, 2005 - 5:00 a.m.

CVE-2005-0175

2005-02-0705:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0175

squid

cache poisoning

http response splitting

attack

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.3 Medium

AI Score

Confidence

Low

0.047 Low

EPSS

Percentile

92.7%

JSON

Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache via an HTTP response splitting attack.

Affected configurations

NVD

Node

squidsquidMatch2.5.6

squidsquidMatch2.5.stable1

squidsquidMatch2.5.stable2

squidsquidMatch2.5.stable3

squidsquidMatch2.5.stable4

squidsquidMatch2.5.stable5

squidsquidMatch2.5.stable6

squidsquidMatch2.5.stable7

squidsquidMatch2.5_.stable1

squidsquidMatch2.5_.stable3

squidsquidMatch2.5_.stable4

squidsquidMatch2.5_.stable5

squidsquidMatch2.5_.stable6

squidsquidMatch2.5_stable3

squidsquidMatch2.5_stable4

squidsquidMatch2.5_stable9

CPENameOperatorVersion
squid:squidsquideq2.5.6
squid:squidsquideq2.5.stable1
squid:squidsquideq2.5.stable2
squid:squidsquideq2.5.stable3
squid:squidsquideq2.5.stable4
squid:squidsquideq2.5.stable5
squid:squidsquideq2.5.stable6
squid:squidsquideq2.5.stable7
squid:squidsquideq2.5_.stable1
squid:squidsquideq2.5_.stable3

CPE	Name	Operator	Version
squid:squid	squid	eq	2.5.6
squid:squid	squid	eq	2.5.stable1
squid:squid	squid	eq	2.5.stable2
squid:squid	squid	eq	2.5.stable3
squid:squid	squid	eq	2.5.stable4
squid:squid	squid	eq	2.5.stable5
squid:squid	squid	eq	2.5.stable6
squid:squid	squid	eq	2.5.stable7
squid:squid	squid	eq	2.5_.stable1
squid:squid	squid	eq	2.5_.stable3