Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2005-0626

Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which allows attackers to steal the related cookies.

  • Published: Mar 8, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-0626
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 2.6
  • AV:N/AC:H/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
squid / squid 2.5.stable5 2.5.stable5.x
squid / squid 2.5.stable6 2.5.stable6.x
squid / squid 2.5.stable7 2.5.stable7.x