Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DNS:SQUID-DNS-RESPONSE-SPOOF

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 DNS

Keywords

 Squid Proxy DNS Response Spoofing

Release Date

 2013/07/15

Update Number

 2282

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DNS: Squid Proxy DNS Response Spoofing


This signature detects attempts to exploit a known vulnerability in Squid Web Proxy Cache while processing of DNS lookups. A successful attack may lead to a man-in-the-middle, site-impersonation, or denial-of-service attack.

Extended Description

Squid Proxy is prone to an unspecified DNS-spoofing vulnerability. This could allow malicious users to perform DNS-spoofing attacks on Squid Proxy clients on unprotected networks. This issue affects Squid Proxy versions 2.5 and earlier.

Affected Products

  • Red Hat Advanced Workstation for the Itanium Processor 2.1.0
  • Red Hat Desktop 3.0.0
  • Red Hat Desktop 4.0.0
  • Red Hat Enterprise Linux AS 3
  • Red Hat Enterprise Linux AS 4
  • Red Hat Enterprise Linux ES 3
  • Red Hat Enterprise Linux ES 4
  • Red Hat Enterprise Linux WS 3
  • Red Hat Enterprise Linux WS 4
  • Red Hat Fedora Core1
  • Red Hat Fedora Core2
  • Red Hat Linux 7.3.0 I386
  • Red Hat Linux 9.0.0 I386
  • SGI ProPack 3.0.0 SP5
  • Squid Web Proxy Cache 2.0.0 PATCH2
  • Squid Web Proxy Cache 2.1.0 PATCH2
  • Squid Web Proxy Cache 2.3.0 .STABLE4
  • Squid Web Proxy Cache 2.3.0 .STABLE5
  • Squid Web Proxy Cache 2.4.0
  • Squid Web Proxy Cache 2.4.0 .STABLE2
  • Squid Web Proxy Cache 2.4.0 .STABLE6
  • Squid Web Proxy Cache 2.4.0 .STABLE7
  • Squid Web Proxy Cache 2.5.0 .STABLE1
  • Squid Web Proxy Cache 2.5.0 .STABLE3
  • Squid Web Proxy Cache 2.5.0 .STABLE4
  • Squid Web Proxy Cache 2.5.0 .STABLE5
  • Squid Web Proxy Cache 2.5.0 .STABLE6
  • Squid Web Proxy Cache 2.5.0 .STABLE7
  • Squid Web Proxy Cache 2.5.0 .STABLE8
  • Squid Web Proxy Cache 2.5.0 .STABLE9
  • Trustix Secure Enterprise Linux 2.0.0
  • Trustix Secure Linux 1.5.0
  • Trustix Secure Linux 2.2.0
  • Turbolinux Appliance Server Hosting Edition 1.0.0
  • Turbolinux Appliance Server Workgroup Edition 1.0.0
  • Turbolinux Turbolinux Server 10.0.0
  • Turbolinux Turbolinux Server 7.0.0
  • Turbolinux Turbolinux Server 8.0.0
  • Turbolinux Turbolinux Workstation 7.0.0
  • Turbolinux Turbolinux Workstation 8.0.0
  • Ubuntu Ubuntu Linux 5.0.0 4 Amd64
  • Ubuntu Ubuntu Linux 5.0.0 4 I386
  • Ubuntu Ubuntu Linux 5.0.0 4 Powerpc

References

  • BugTraq: 13592
  • CVE: CVE-2005-1519

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out