<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: squidguard vulnerability

squidguard vulnerability

From: Petko Popadiyski <petko_at_freebsd-bg.org>
Date: Fri, 19 Mar 2004 11:51:55 +0200

squidGuard is a fast redirector using database stored blacklists.

I found that squidguard is prone to the bug found in squid about the
NULL URL character unauthorized access (
http://www.securityfocus.com/bid/9778).
The vulnerability presents itself when a URI that is designed to access
a specific location with a supplied username, contains '%00'
characters. This sequence may be placed as part of the username value
prior to the @ symbol in the malicious URI.
proof of concept :
http://foo%00@www.example.com/

-- 
Best wishes,
Petko Popadiyski
ICQ: 59468934

Received on Mar 22 2004

This message: [ Message body ]
Next message: Steven Hill: "Analysis of the Exploitation Processes (.pdf)"
Previous message: Seguridad en Computo UNAM: "Computer Security Mexico 2004"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos