CVE-2005-1519

EPSS 24.58%
Published 11.05.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source secalert@redhat.com
Teams watchlist Login
Open Login

Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.

Affected products Warnungen 0 Metrics 2 CWE 0 References 12

Data is provided by the National Vulnerability Database (NVD)

Squid ≫ Squid Version <= 2.5_stable9

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	24.58%	0.956

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.4	10	4.9	AV:N/AC:L/Au:N/C:N/I:P/A:P

http://fedoranews.org/updates/FEDORA--.shtml

http://www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html

http://www.redhat.com/support/errata/RHSA-2005-489.html

http://secunia.com/advisories/15294

Patch

http://www.debian.org/security/2005/dsa-751

http://www.securityfocus.com/bid/13592

http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query

Patch

http://www.vupen.com/english/advisories/2005/0521

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9976

https://nvd.nist.gov/vuln/detail/CVE-2005-1519

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-1519

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-1519

EUVD