Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Squid_web_proxy | National_science_foundation | 1.0 (including) | 1.0 (including) |
| Squid_web_proxy | National_science_foundation | 1.0novm (including) | 1.0novm (including) |
| Squid_web_proxy | National_science_foundation | 1.1 (including) | 1.1 (including) |
| Squid_web_proxy | National_science_foundation | 2.1 (including) | 2.1 (including) |
| Squid_web_proxy | National_science_foundation | 2.2 (including) | 2.2 (including) |