xfocus logo xfocus title
首页 焦点原创 安全文摘 安全工具 安全漏洞 焦点项目 焦点论坛 关于我们
English Version
 最近严重漏洞 
Microsoft RPC接口远程任意代码可执行漏洞
Cisco IOS接口不正确处理IPV4包远程拒绝服务漏洞
Microsoft Windows CreateFile API命名管道权限提升漏洞

Squid Cache FTP 代理处理URL时存在缓冲溢出漏洞


发布时间:2002-02-26
更新时间:2002-02-26
严重程度:
威胁程度:普通用户访问权限
错误类型:边界检查错误
利用方式:服务器模式

BUGTRAQ ID:4148

受影响系统
National Science Foundation Squid Web Proxy 2.0
National Science Foundation Squid Web Proxy 2.1
National Science Foundation Squid Web Proxy 2.2
   - RedHat Linux 5.2 alpha
   - RedHat Linux 5.2 i386
   - RedHat Linux 5.2 sparc
   - RedHat Linux 6.0 alpha
   - RedHat Linux 6.0 i386
   - RedHat Linux 6.0 sparc
National Science Foundation Squid Web Proxy 2.3STABLE5
   + MandrakeSoft Corporate Server 1.0.1
   + MandrakeSoft Linux Mandrake 7.1
   + MandrakeSoft Linux Mandrake 7.2
   + MandrakeSoft Linux Mandrake 8.0
   + MandrakeSoft Linux Mandrake 8.0 ppc
   + MandrakeSoft Single Network Firewall 7.2
   + Trustix Secure Linux 1.1
   + Trustix Secure Linux 1.2
   + Trustix Secure Linux 1.5
National Science Foundation Squid Web Proxy 2.3
National Science Foundation Squid Web Proxy 2.4STABLE3
National Science Foundation Squid Web Proxy 2.4STABLE2
National Science Foundation Squid Web Proxy 2.4STABLE1
   + MandrakeSoft Linux Mandrake 8.1
   + RedHat Linux 7.2
   - S.u.S.E. Linux 7.2
National Science Foundation Squid Web Proxy 2.4
   + FreeBSD FreeBSD 4.4
   + FreeBSD FreeBSD 4.5
   + FreeBSD FreeBSD 5.0
   + Trustix Secure Linux 1.1
   + Trustix Secure Linux 1.2
   + Trustix Secure Linux 1.5
详细描述
Squid proxy服务程序的FTP 在处理URL时存在缓冲溢出。

如果用户能是使用Squid处理代理FTP请求,就可能导致用户请求恶意的超长的
ftp://URL而导致服务产生缓冲溢出,需要重新启动才能获得正常功能。

测试代码
尚无

解决方案
临时方法:

编辑squid.conf文件关闭匿名的FTP请求:

acl non-anonymous-ftp url_regex -i ^ftp://[^/@]*@
http_access deny non-anonymous-ftp

你也可以下载使用如下补丁程序:

National Science Foundation Squid Web Proxy 2.0:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.1:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.2:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.3STABLE5:

Trustix RPM squid-2.4.STABLE4-1tr.i586.rpm
ftp://ftp.trustix.net/pub/Trustix/updates/1.1/RPMS/squid-2.4.STABLE4-1tr.i586.rpm
Release 1.1

Trustix RPM squid-2.4.STABLE4-1tr.i586.rpm
ftp://ftp.trustix.net/pub/Trustix/updates/1.2/RPMS/squid-2.4.STABLE4-1tr.i586.rpm
Release 1.2

Trustix RPM squid-2.4.STABLE4-1tr.i586.rpm
ftp://ftp.trustix.net/pub/Trustix/updates/1.5/RPMS/squid-2.4.STABLE4-1tr.i586.rpm
Release 1.5

National Science Foundation Squid Web Proxy 2.3:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.4STABLE3:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.4STABLE2:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.4STABLE1:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

National Science Foundation Squid Web Proxy 2.4:

National Science Foundation Upgrade squid-2.4.STABLE4-src.tar.gz
http://www.squid-cache.org/Versions/v2/2.4/squid-2.4.STABLE4-src.tar.gz

FreeBSD Upgrade squid-2.4_8.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-4-stable/www/squid-2.4_8.tgz
For version included in ports for FreeBSD 4.x.

FreeBSD Upgrade squid-2.4_8.tgz
ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/i386/packages-5-current/www/squid-2.4_8.tgz
For version included in ports for FreeBSD 5.0.

相关信息
Jouko Pynnonen <jouko@solutions.fi>
参考:http://online.securityfocus.com/archive/1/257614
http://online.securityfocus.com/archive/1/257370
http://online.securityfocus.com/advisories/3886
http://online.securityfocus.com/advisories/3890
Copyright © 1998-2003 XFOCUS Team. All Rights Reserved