Vulnerability Details CVE-1999-1481
Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.064
EPSS Ranking 90.5%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/archive/1/33295
- http://www.securityfocus.com/archive/1/33295
- http://www.securityfocus.com/bid/741
- http://www.squid-cache.org/Versions/v2/2.2/bugs/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3433
- http://www.securityfocus.com/archive/1/33295
- http://www.securityfocus.com/archive/1/33295
- http://www.securityfocus.com/bid/741
- http://www.squid-cache.org/Versions/v2/2.2/bugs/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/3433
Products affected by CVE-1999-1481
-
cpe:2.3:a:national_science_foundation:squid_web_proxy:1.0
-
cpe:2.3:a:national_science_foundation:squid_web_proxy:1.0novm
-
cpe:2.3:a:national_science_foundation:squid_web_proxy:1.1
-
cpe:2.3:a:national_science_foundation:squid_web_proxy:2.1
-
cpe:2.3:a:national_science_foundation:squid_web_proxy:2.2