CVE-2005-1519

NONE EPSS 81.7%
Published May 11, 200521y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 11, 2005 21y ago
Last Modified Jun 16, 2026 2w ago

Description

Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.

Threat Intelligence

EPSS Exploit Probability
81.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 1

VendorProductVersionRange
squidsquid* ≤2.5_stable9

References 9

  • fedoranews.org http://fedoranews.org/updates/FEDORA--.shtml
  • secunia.com http://secunia.com/advisories/15294
    Patch
  • debian.org http://www.debian.org/security/2005/dsa-751
  • redhat.com http://www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html
  • redhat.com http://www.redhat.com/support/errata/RHSA-2005-489.html
  • securityfocus.com http://www.securityfocus.com/bid/13592
  • squid-cache.org http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query
    Patch
  • vupen.com http://www.vupen.com/english/advisories/2005/0521
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9976

Remediation

  • secunia.com http://secunia.com/advisories/15294
    Patch
  • squid-cache.org http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query
    Patch