CVE-2009-0801 — MEDIUM (5.4)

Vulnerability Description

Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a crafted web page that causes a client to send HTTP requests with a modified Host header.

CVSS Score

5.4

MEDIUM

AV:N/AC:H/Au:N/C:C/I:N/A:N

Confidentiality

COMPLETE

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Squid	Squid Web Proxy Cache	2.7

Related Weaknesses (CWE)

CWE-264

References

http://www.kb.cert.org/vuls/id/435052Third Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/33858
http://www.kb.cert.org/vuls/id/435052Third Party AdvisoryUS Government Resource
http://www.securityfocus.com/bid/33858

FAQ

What is CVE-2009-0801?

CVE-2009-0801 is a vulnerability with a CVSS score of 5.4 (MEDIUM). Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, ...

How severe is CVE-2009-0801?

CVE-2009-0801 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-0801?

Check the references section above for vendor advisories and patch information. Affected products include: Squid Squid Web Proxy Cache.