Squid 3.4.4 up to and including 3.4.11 and 3.5.0.1 up to and including 3.5.1, when Digest authentication is used, allow remote authenticated users to retain access by leveraging a stale nonce, aka "Nonce replay vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid 3.4.10 |
||
squid-cache squid 3.4.12 |
||
squid-cache squid 3.4.5 |
||
squid-cache squid 3.4.6 |
||
squid-cache squid 3.4.7 |
||
squid-cache squid 3.4.8 |
||
squid-cache squid 3.5.0.1 |
||
squid-cache squid 3.5.0.2 |
||
squid-cache squid 3.5.0.3 |
||
squid-cache squid 3.5.0.4 |
||
squid-cache squid 3.4.4 |
||
squid-cache squid 3.4.9 |
||
squid-cache squid 3.4.11 |
||
squid-cache squid 3.4.13 |
||
squid-cache squid 3.5.1 |
||
opensuse opensuse 13.1 |
||
opensuse opensuse 13.2 |