Unrated severityNVD Advisory· Published Feb 7, 2005· Updated Jun 16, 2026
CVE-2005-0174
CVE-2005-0174
Description
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and (3) header names containing whitespace characters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
17cpe:2.3:a:squid:squid:2.5.6:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:squid:squid:2.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable7:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable9:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
13- www.redhat.com/support/errata/RHSA-2005-060.htmlnvdPatch
- www.redhat.com/support/errata/RHSA-2005-061.htmlnvdPatch
- distro.conectiva.com.br/atualizacoes/nvdVendor Advisory
- www.kb.cert.org/vuls/id/768702nvdThird Party AdvisoryUS Government Resource
- www.novell.com/linux/security/advisories/2005_06_squid.htmlnvdVendor Advisory
- www.squid-cache.org/Versions/v2/2.5/bugs/nvdVendor Advisory
- fedoranews.org/updates/FEDORA--.shtmlnvd
- marc.infonvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.htmlnvd
- www.securityfocus.com/bid/12412nvd
- www3.br.squid-cache.org/Advisories/SQUID-2005_4.txtnvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10656nvd
News mentions
0No linked articles in our index yet.