Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid-cache squid 2.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-41318
A buffer over-read exists in libntlmauth in Squid 2.5 up to and including 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB authentication helpers are vulnerable to reading unintended memory locations. In some configurations, cleartext credentials from these loc...
Squid-cache Squid
4
CVSSv2
CVE-2021-31807
An issue exists in Squid prior to 4.15 and 5.x prior to 5.0.6. An integer overflow problem allows a remote server to achieve Denial of Service when delivering responses to HTTP Range requests. The issue trigger is a header that can be expected to exist in HTTP traffic without any...
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.6
Squid-cache Squid 2.5.stable9
Squid-cache Squid 2.7
Squid-cache Squid 2.5.stable4
Squid-cache Squid 2.5.stable7
Squid-cache Squid 2.5.stable14
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable12
Squid-cache Squid 2.5.stable13
Squid-cache Squid 2.5.stable11
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable8
Squid-cache Squid 2.5.stable10
Squid-cache Squid
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Netapp Cloud Manager -
6.8
CVSSv2
CVE-2014-6270
Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based ...
Squid-cache Squid 2.7.stable2
Squid-cache Squid 2.7.stable3
Squid-cache Squid 2.7.stable1
Squid-cache Squid 2.7.stable8
Squid-cache Squid 2.7.stable9
Squid-cache Squid 2.6.stable8
Squid-cache Squid 2.6.stable9
Squid-cache Squid 2.6.stable16
Squid-cache Squid 2.6.stable17
Squid-cache Squid 2.5.stable1
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable10
Squid-cache Squid 2.5.stable11
Squid-cache Squid 2.4.stable4
Squid-cache Squid 2.4.stable5
Squid-cache Squid 3.0
Squid-cache Squid 3.0.stable12
Squid-cache Squid 3.0.stable13
Squid-cache Squid 3.0.stable19
Squid-cache Squid 3.0.stable2
Squid-cache Squid 3.0.stable3
Squid-cache Squid 3.0.stable4
5
CVSSv2
CVE-2012-5643
Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x prior to 3.1.22, 3.2.x prior to 3.2.4, and 3.3.x prior to 3.3.0.2 allow remote malicious users to cause a denial of service (memory consumption) via (1) invalid Content-Length headers, (2) long POST r...
Squid-cache Squid 2.6
Squid-cache Squid 2.0
Squid-cache Squid 2.7
Squid-cache Squid 2.2
Squid-cache Squid 2.3
Squid-cache Squid 2.5
Squid-cache Squid 2.1
Squid-cache Squid 2.4
Squid-cache Squid 3.1.0.18
Squid-cache Squid 3.0.stable13
Squid-cache Squid 3.1.21
Squid-cache Squid 3.0
Squid-cache Squid 3.0.stable9
Squid-cache Squid 3.1.13
Squid-cache Squid 3.0.stable20
Squid-cache Squid 3.0.stable14
Squid-cache Squid 3.0.stable3
Squid-cache Squid 3.1.17
Squid-cache Squid 3.1.0.7
Squid-cache Squid 3.1.0.14
Squid-cache Squid 3.0.stable4
Squid-cache Squid 3.1.0.12
5
CVSSv2
CVE-2010-0639
The htcpHandleTstRequest function in htcp.c in Squid 2.x prior to 2.6.STABLE24 and 2.7 prior to 2.7.STABLE8, and htcp.cc in 3.0 prior to 3.0.STABLE24, allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the...
Squid-cache Squid 2.6
Squid-cache Squid 2.7
Squid-cache Squid 2.1
Squid-cache Squid 3.0.stable2
Squid-cache Squid 3.0.stable20
Squid-cache Squid 3.0.stable21
Squid-cache Squid 3.0.stable22
Squid-cache Squid 3.0.stable11
Squid-cache Squid 3.0.stable12
Squid-cache Squid 3.0.stable13
Squid-cache Squid 3.0.stable14
Squid-cache Squid 3.0.stable15
Squid-cache Squid 3.0.stable7
Squid-cache Squid 3.0.stable8
Squid-cache Squid 3.0.stable9
Squid-cache Squid 3.0.stable23
Squid-cache Squid 2.0
Squid-cache Squid 2.5
Squid-cache Squid 2.2
Squid-cache Squid 3.0
Squid-cache Squid 3.0.stable16
Squid-cache Squid 3.0.stable18
4
CVSSv2
CVE-2010-0308
lib/rfc1035.c in Squid 2.x, 3.0 up to and including 3.0.STABLE22, and 3.1 up to and including 3.1.0.15 allows remote malicious users to cause a denial of service (assertion failure) via a crafted DNS packet that only contains a header.
Squid-cache Squid 3.0
Squid-cache Squid 2.6
Squid-cache Squid 2.7
Squid-cache Squid 3.1.0.6
Squid-cache Squid 3.1.0.7
Squid-cache Squid 3.1.0.11
Squid-cache Squid 3.0.stable22
Squid-cache Squid 3.0.stable15
Squid-cache Squid 3.0.stable14
Squid-cache Squid 3.0.stable6
Squid-cache Squid 3.0.stable5
Squid-cache Squid 2.1
Squid-cache Squid 2.0
Squid-cache Squid 3.1
Squid-cache Squid 3.1.0.1
Squid-cache Squid 3.1.0.8
Squid-cache Squid 3.1.0.9
Squid-cache Squid 3.1.0.10
Squid-cache Squid 3.0.stable21
Squid-cache Squid 3.0.stable20
Squid-cache Squid 3.0.stable13
Squid-cache Squid 3.0.stable12
7.5
CVSSv2
CVE-2005-0211
Buffer overflow in wccp.c in Squid 2.5 prior to 2.5.STABLE7 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
Squid-cache Squid 2.5.stable1
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable4
Debian Debian Linux 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525
CVE-2024-4652
CVE-2024-1438
CVE-2024-4671
CVE-2024-34351
arbitrary
CVE-2024-4650
SQL injection
overflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started