Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid 2.5 .stable3 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2005-0241
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and previous versions does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote malicious users to poison the cache or bypass access controls b...
Squid Squid 2.5.stable5
Squid Squid 2.5.stable3
Squid Squid 2.5.stable1
Squid Squid 2.5.stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5.stable7
5
CVSSv2
CVE-2005-0446
Squid 2.5.STABLE8 and previous versions allows remote malicious users to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.
Squid Squid 2.5 Stable9
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.4 .stable7
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.0 Patch2
Squid Squid 2.5 Stable3
Squid Squid 2.1.patch1
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.3 .stable5
Squid Squid 2.1.release
7.5
CVSSv2
CVE-2005-0173
squid_ldap_auth in Squid 2.5 and previous versions allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.1.patch1
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.1.release
Squid Squid 2.5.stable1
Squid Squid 2.0.release
Squid Squid 2.1.pre4
Squid Squid 2.1.pre3
Squid Squid 2.3.stable1
Squid Squid 2.4.stable7
Squid Squid 2.2.devel4
Squid Squid 2.5.stable6
Squid Squid 2.3.stable2
7.5
CVSSv2
CVE-2005-1345
Squid 2.5.STABLE9 and previous versions does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
Squid Squid 2.5.stable5
Squid Squid 2.5.stable3
Squid Squid 2.5.stable1
Squid Squid 2.5.stable9
Squid Squid 2.5.stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5.stable8
Squid Squid 2.5.stable7
10
CVSSv2
CVE-2005-0194
Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote malicious users to bypass intended ACLs if the administrator ...
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.1.patch1
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.1.release
Squid Squid 2.5.stable1
Squid Squid 2.0.release
Squid Squid 2.1.pre4
Squid Squid 2.1.pre3
Squid Squid 2.3.stable1
Squid Squid 2.4.stable7
Squid Squid 2.2.devel4
Squid Squid 2.5.stable6
Squid Squid 2.3.stable2
7.5
CVSSv2
CVE-2005-0211
Buffer overflow in wccp.c in Squid 2.5 prior to 2.5.STABLE7 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.5.stable4
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable1
Debian Debian Linux 3.0
5
CVSSv2
CVE-2005-0718
Squid 2.5.STABLE7 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory.
Squid Squid 2.5 Stable9
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.4 .stable7
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.0 Patch2
Squid Squid 2.5 Stable3
Squid Squid 2.1.patch1
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.3 .stable5
Squid Squid 2.1.release
5
CVSSv2
CVE-2005-0174
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and...
Squid Squid 2.5 Stable9
Squid Squid 2.5 .stable3
Squid Squid 2.5.stable5
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable3
Squid Squid 2.5.6
Squid Squid 2.5.stable1
Squid Squid 2.5 .stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 .stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable1
Squid Squid 2.5 .stable4
Squid Squid 2.5 Stable4
Squid Squid 2.5.stable7
5
CVSSv2
CVE-2005-0175
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache via an HTTP response splitting attack.
Squid Squid 2.5 Stable9
Squid Squid 2.5 .stable3
Squid Squid 2.5.stable5
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable3
Squid Squid 2.5.6
Squid Squid 2.5.stable1
Squid Squid 2.5 .stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 .stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable1
Squid Squid 2.5 .stable4
Squid Squid 2.5 Stable4
Squid Squid 2.5.stable7
5
CVSSv2
CVE-2004-0918
The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache prior to 2.4.STABLE7 allows remote malicious users to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.4 .stable7
Openpkg Openpkg 2.1
Squid Squid 2.0 Patch2
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3 .stable5
Squid Squid 2.5 .stable5
Openpkg Openpkg Current
Squid Squid 3.0 Pre1
Squid Squid 2.5 .stable6
Openpkg Openpkg 2.2
Squid Squid 2.4 .stable6
Squid Squid 2.5 .stable1
Squid Squid 2.4
Squid Squid 2.5 .stable4
Squid Squid 3.0 Pre3
Squid Squid 3.0 Pre2
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Ubuntu Ubuntu Linux 4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »