CVE-2005-1345

Name of the Vulnerable Software and Affected Versions: Squid versions 2.5.STABLE9 and earlier

Description: The issue arises when Squid identifies missing or invalid ACLs in the http access configuration. Instead of triggering a fatal error, it could lead to less restrictive ACLs than intended by the administrator.

Recommendations: For Squid versions 2.5.STABLE9 and earlier, consider updating the http access configuration to ensure all ACLs are properly defined and valid to enforce the intended access restrictions. As a temporary workaround, manually review and validate all ACL configurations to minimize potential security risks.