Lucene search
UbuntuUSN-93-1HistoryMar 08, 2005 - 12:00 a.m.
Squid vulnerability
2005-03-0800:00:00
ubuntu.com
34
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.006
Percentile
78.4%
Releases
- Ubuntu 4.10
Details
A race condition was discovered in the handling of “Set-Cookie”
headers. If the obsolete Netscape recommendation was used for handling
cookies in the cache, it was possible for an attacker to steal the
cookies of other users.
References
Related
ubuntucve
ubuntucve
CVE-2005-0626
2005-03-08 00:00:00
debiancve
debiancve
CVE-2005-0626
2005-03-08 05:00:00
nvd
nvd
CVE-2005-0626
2005-03-08 05:00:00
nessus
nessus
Squid Set-Cookie Header Cross-session Information Disclosure
2005-07-20 00:00:00
Ubuntu 4.10 : squid vulnerability (USN-93-1)
2006-01-15 00:00:00
Mandrake Linux Security Advisory : squid (MDKSA-2005:078)
2005-05-02 00:00:00
cvelist
cvelist
CVE-2005-0626
2005-03-03 05:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-93-1)
2022-08-26 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
cve
cve
CVE-2005-0626
2005-03-08 05:00:00
redhat
redhat
(RHSA-2005:415) squid security update
2005-06-14 00:00:00
centos
centos
squid security update
2005-06-14 20:28:53
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:H/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.006
Percentile
78.4%
Related for USN-93-1