CVE-1999-1481

Published: 1999-12-31

Description

Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

national_science_foundation - squid_web_proxy

Affected Versions:

1.0

national_science_foundation - squid_web_proxy

Affected Versions:

1.0novm

national_science_foundation - squid_web_proxy

Affected Versions:

1.1

national_science_foundation - squid_web_proxy

Affected Versions:

2.1

national_science_foundation - squid_web_proxy

Affected Versions:

2.2

References

http://www.securityfocus.com/archive/1/33295
http://www.securityfocus.com/archive/1/33295
http://www.securityfocus.com/bid/741
ExploitPatchVendor Advisory
http://www.squid-cache.org/Versions/v2/2.2/bugs/
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/3433
http://www.securityfocus.com/archive/1/33295
http://www.securityfocus.com/archive/1/33295
http://www.securityfocus.com/bid/741
ExploitPatchVendor Advisory
http://www.squid-cache.org/Versions/v2/2.2/bugs/
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/3433

Neural Processor Active