Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

This site is deprecated. Please CLICK HERE for latest updates

Short Name

 DNS:SQUID-DNS-RESPONSE-SPOOF

Severity

 Major

Recommended

 No

Recommended Action

 Drop

Category

 DNS

Keywords

 Squid Proxy DNS Response Spoofing

Release Date

 2013/07/15

Update Number

 2282

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

DNS: Squid Proxy DNS Response Spoofing


This signature detects attempts to exploit a known vulnerability in Squid Web Proxy Cache while processing of DNS lookups. A successful attack may lead to a man-in-the-middle, site-impersonation, or denial-of-service attack.

Extended Description

Squid Proxy is prone to an unspecified DNS-spoofing vulnerability. This could allow malicious users to perform DNS-spoofing attacks on Squid Proxy clients on unprotected networks. This issue affects Squid Proxy versions 2.5 and earlier.

Affected Products

  • Red_hat advanced_workstation_for_the_itanium_processor 2.1.0
  • Red_hat desktop 3.0.0
  • Red_hat desktop 4.0.0
  • Red_hat enterprise_linux_as 3
  • Red_hat enterprise_linux_as 4
  • Red_hat enterprise_linux_es 3
  • Red_hat enterprise_linux_es 4
  • Red_hat enterprise_linux_ws 3
  • Red_hat enterprise_linux_ws 4
  • Red_hat fedora Core1
  • Red_hat fedora Core2
  • Red_hat linux 7.3.0 I386
  • Red_hat linux 9.0.0 I386
  • Sgi propack 3.0.0 SP5
  • Squid web_proxy_cache 2.0.0 PATCH2
  • Squid web_proxy_cache 2.1.0 PATCH2
  • Squid web_proxy_cache 2.3.0 .STABLE4
  • Squid web_proxy_cache 2.3.0 .STABLE5
  • Squid web_proxy_cache 2.4.0
  • Squid web_proxy_cache 2.4.0 .STABLE2
  • Squid web_proxy_cache 2.4.0 .STABLE6
  • Squid web_proxy_cache 2.4.0 .STABLE7
  • Squid web_proxy_cache 2.5.0 .STABLE1
  • Squid web_proxy_cache 2.5.0 .STABLE3
  • Squid web_proxy_cache 2.5.0 .STABLE4
  • Squid web_proxy_cache 2.5.0 .STABLE5
  • Squid web_proxy_cache 2.5.0 .STABLE6
  • Squid web_proxy_cache 2.5.0 .STABLE7
  • Squid web_proxy_cache 2.5.0 .STABLE8
  • Squid web_proxy_cache 2.5.0 .STABLE9
  • Trustix secure_enterprise_linux 2.0.0
  • Trustix secure_linux 1.5.0
  • Trustix secure_linux 2.2.0
  • Turbolinux appliance_server_hosting_edition 1.0.0
  • Turbolinux appliance_server_workgroup_edition 1.0.0
  • Turbolinux turbolinux_server 10.0.0
  • Turbolinux turbolinux_server 7.0.0
  • Turbolinux turbolinux_server 8.0.0
  • Turbolinux turbolinux_workstation 7.0.0
  • Turbolinux turbolinux_workstation 8.0.0
  • Ubuntu ubuntu_linux 5.0.0 4 Amd64
  • Ubuntu ubuntu_linux 5.0.0 4 I386
  • Ubuntu ubuntu_linux 5.0.0 4 Powerpc

References

  • BugTraq: 13592
  • CVE: CVE-2005-1519

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out