Vulnerability Name:

CVE-2005-0173 (CCN-18983)

Assigned:2005-01-10
Published:2005-01-10
Updated:2017-10-11
Summary:squid_ldap_auth in Squid 2.5 and earlier allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Bypass Security
References:Source: CCN
Type: SGI Security Advisory 20050207-01-U
SGI Advanced Linux Environment 3 Security Update #27

Source: MITRE
Type: CNA
CVE-2005-0173

Source: CONECTIVA
Type: Patch
CLA-2005:923

Source: FEDORA
Type: UNKNOWN
FLSA-2006:152809

Source: BUGTRAQ
Type: UNKNOWN
20050207 [USN-77-1] Squid vulnerabilities

Source: CCN
Type: RHSA-2005-060
squid security update

Source: CCN
Type: RHSA-2005-061
squid security update

Source: CCN
Type: CIAC Information Bulletin P-138
Updated Squid Package Fixes Security Issues

Source: DEBIAN
Type: Patch, Vendor Advisory
DSA-667

Source: DEBIAN
Type: DSA-667
squid -- several vulnerabilities

Source: CCN
Type: GLSA-200502-04
Squid: Multiple vulnerabilities

Source: CCN
Type: US-CERT VU#924198
Squid LDAP authentication routines fail to check for invalid input

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#924198

Source: MANDRAKE
Type: UNKNOWN
MDKSA-2005:034

Source: SUSE
Type: Patch, Vendor Advisory
SUSE-SA:2005:006

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2005:060

Source: REDHAT
Type: Patch, Vendor Advisory
RHSA-2005:061

Source: BID
Type: UNKNOWN
12431

Source: CCN
Type: BID-12431
Squid Proxy squid_ldap_auth Authentication Bypass Vulnerability

Source: CONFIRM
Type: UNKNOWN
http://www.squid-cache.org/bugs/show_bug.cgi?id=1187

Source: CCN
Type: Squid Web Proxy Cache Web site
Sanity check usernames in squid_ldap_auth

Source: CONFIRM
Type: Patch
http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-ldap_spaces

Source: CONFIRM
Type: Patch
http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE7-ldap_spaces.patch

Source: CCN
Type: TLSA-2005-24
Multiple vulnerabilities exist in Squid

Source: CCN
Type: USN-77-1
Squid vulnerabilities

Source: XF
Type: UNKNOWN
squid-ldap-acl-bypass(18983)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10251

Source: SUSE
Type: SUSE-SA:2005:006
squid: remote command execution

Source: SUSE
Type: SUSE-SR:2005:003
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:squid:squid:2.0.patch1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.0.patch2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.0.pre1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.0.release:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.patch1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.patch2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.pre1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.pre3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.pre4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.1.release:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.devel3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.devel4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.pre1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.pre2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.stable2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.2.stable5:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.devel2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.devel3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.stable2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.3.stable5:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable6:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.4.stable7:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable2:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable5:*:*:*:*:*:*:*
  • OR cpe:/a:squid:squid:2.5.stable6:*:*:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:squid-cache:squid:2.5.stable5:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable2:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable6:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.5.stable4:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.5.stable3:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.5.stable1:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.4.stable7:*:*:*:*:*:*:*
  • OR cpe:/a:squid-cache:squid:2.5.stable2:*:*:*:*:*:*:*
  • AND
  • cpe:/o:debian:debian_linux:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*
  • OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:8.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:2.1:*:aw:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:9.2:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:suse:suse_linux:9.2:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.1:*:*:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*
  • OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.1::x86-64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:3.0::x86_64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:9.2::amd64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64:*:*:*:*:*
  • OR cpe:/o:mandrakesoft:mandrake_linux_corporate_server:2.1::x86_64:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:10251
    V
    		The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.
    2013-04-29
    oval:com.redhat.rhsa:def:20050060
    P
    		RHSA-2005:060: squid security update (Important)
    2005-02-15
    oval:com.redhat.rhsa:def:20050061
    P
    		RHSA-2005:061: squid security update (Important)
    2005-02-11
    oval:org.debian:def:667
    V
    		several vulnerabilities
    2005-02-04
    BACK
    squid squid 2.0.patch1
    squid squid 2.0.patch2
    squid squid 2.0.pre1
    squid squid 2.0.release
    squid squid 2.1.patch1
    squid squid 2.1.patch2
    squid squid 2.1.pre1
    squid squid 2.1.pre3
    squid squid 2.1.pre4
    squid squid 2.1.release
    squid squid 2.2.devel3
    squid squid 2.2.devel4
    squid squid 2.2.pre1
    squid squid 2.2.pre2
    squid squid 2.2.stable1
    squid squid 2.2.stable2
    squid squid 2.2.stable3
    squid squid 2.2.stable4
    squid squid 2.2.stable5
    squid squid 2.3.devel2
    squid squid 2.3.devel3
    squid squid 2.3.stable1
    squid squid 2.3.stable2
    squid squid 2.3.stable3
    squid squid 2.3.stable4
    squid squid 2.3.stable5
    squid squid 2.4.stable1
    squid squid 2.4.stable2
    squid squid 2.4.stable3
    squid squid 2.4.stable4
    squid squid 2.4.stable6
    squid squid 2.4.stable7
    squid squid 2.5.stable1
    squid squid 2.5.stable2
    squid squid 2.5.stable3
    squid squid 2.5.stable4
    squid squid 2.5.stable5
    squid squid 2.5.stable6
    squid-cache squid 2.5.stable5
    squid-cache squid 2.4.stable1
    squid-cache squid 2.4.stable2
    squid-cache squid 2.4.stable3
    squid-cache squid 2.4.stable4
    squid-cache squid 2.4.stable6
    squid-cache squid 2.5.stable4
    squid-cache squid 2.5.stable3
    squid-cache squid 2.5.stable1
    squid-cache squid 2.4.stable7
    squid-cache squid 2.5.stable2
    debian debian linux 3.0
    gentoo linux *
    suse suse linux 8.1
    suse linux enterprise server 8
    mandrakesoft mandrake linux corporate server 2.1
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    redhat enterprise linux 2.1
    suse suse linux 8.2
    redhat enterprise linux 2.1
    suse suse linux 9.0
    mandrakesoft mandrake linux 9.2
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    mandrakesoft mandrake linux 10.0
    suse suse linux 9.1
    redhat enterprise linux 3
    suse suse linux 9.2
    mandrakesoft mandrake linux 10.1
    mandrakesoft mandrake linux corporate server 3.0
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat linux advanced workstation 2.1
    mandrakesoft mandrake linux 10.1
    mandrakesoft mandrake linux corporate server 3.0
    mandrakesoft mandrake linux 9.2
    mandrakesoft mandrake linux 10.0
    mandrakesoft mandrake linux corporate server 2.1