Initial Redirect Unspecified Remote Buffer Overflow Vulnerability

Bugtraq ID:	12827
Class:	Boundary Condition Error
CVE:	CVE-2005-0813
Remote:	Yes
Local:	No
Published:	Mar 17 2005 12:00AM
Updated:	Jul 12 2009 10:56AM
Credit:	The individual or individuals responsible for the discovery of this issue are currently unknown; the vendor disclosed this issue.
Vulnerable:	Initial Redirect Squid Proxy Plug-In 0.2 Initial Redirect Squid Proxy Plug-In 0.1
Not Vulnerable:	Initial Redirect Squid Proxy Plug-In 0.3

Initial Redirect Unspecified Remote Buffer Overflow Vulnerability

A remote buffer overflow vulnerability affects Initial Redirect. This issue is due to a failure of the application to securely copy user-supplied data into potentially sensitive process buffers.

The affect of this issue is currently unspecified. However, due to the nature of the vulnerability it is likely that this issue may facilitate denial of service attacks and potentially remote code execution.

This BID will be updated as more details become available.

Initial Redirect Unspecified Remote Buffer Overflow Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Initial Redirect Unspecified Remote Buffer Overflow Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue.


Initial Redirect Squid Proxy Plug-In 0.1

• Initial Redirect Initial Redirect 0.3
  http://www.vanheusden.com/ir/ir-0.3.tgz

Initial Redirect Squid Proxy Plug-In 0.2

• Initial Redirect Initial Redirect 0.3
  http://www.vanheusden.com/ir/ir-0.3.tgz

Initial Redirect Unspecified Remote Buffer Overflow Vulnerability

References:

• Initial Redirect Home Page (Initial Redirect)