Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sarg squid analysis report generator vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-1922
Multiple stack-based buffer overflows in Sarg might allow malicious users to execute arbitrary code via unknown vectors, probably a crafted Squid log file.
Sarg Squid Analysis Report Generator
10
CVSSv2
CVE-2008-1167
Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote malicious users to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third part...
Sarg Squid Analysis Report Generator 2.2.3.1
9.3
CVSSv2
CVE-2008-7249
Buffer overflow in Squid Analysis Report Generator (Sarg) 2.2.3.1, and probably later, allows user-assisted remote malicious users to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167.
Pedro Lineu Orso Sarg 2.2.4
4.4
CVSSv2
CVE-2019-18932
log.c in Squid Analysis Report Generator (sarg) up to and including 2.3.11 allows local privilege escalation. By default, it uses a fixed temporary directory /tmp/sarg. As the root user, sarg creates this directory or reuses an existing one in an insecure manner. An attacker can ...
Squid Analysis Report Generator Project Squid Analysis Report Generator
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2008-7250
Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4 allows remote malicious users to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log....
Pedro Lineu Orso Sarg 2.2.4
4.3
CVSSv2
CVE-2008-1168
Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote malicious users to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of th...
Sarg Squid Analysis Report Generator 2.2.3.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started