Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid 2.5 .stable4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-1345
Squid 2.5.STABLE9 and previous versions does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
Squid Squid 2.5.stable5
Squid Squid 2.5.stable3
Squid Squid 2.5.stable1
Squid Squid 2.5.stable9
Squid Squid 2.5.stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5.stable8
Squid Squid 2.5.stable7
NA
CVE-2005-0173
squid_ldap_auth in Squid 2.5 and previous versions allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.1.patch1
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.1.release
Squid Squid 2.5.stable1
Squid Squid 2.0.release
Squid Squid 2.1.pre4
Squid Squid 2.1.pre3
Squid Squid 2.3.stable1
Squid Squid 2.4.stable7
Squid Squid 2.2.devel4
Squid Squid 2.5.stable6
Squid Squid 2.3.stable2
NA
CVE-2005-0194
Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote malicious users to bypass intended ACLs if the administrator ...
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.1.patch1
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.1.release
Squid Squid 2.5.stable1
Squid Squid 2.0.release
Squid Squid 2.1.pre4
Squid Squid 2.1.pre3
Squid Squid 2.3.stable1
Squid Squid 2.4.stable7
Squid Squid 2.2.devel4
Squid Squid 2.5.stable6
Squid Squid 2.3.stable2
NA
CVE-2005-0211
Buffer overflow in wccp.c in Squid 2.5 prior to 2.5.STABLE7 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.5.stable4
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable1
Debian Debian Linux 3.0
NA
CVE-2005-0241
The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and previous versions does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote malicious users to poison the cache or bypass access controls b...
Squid Squid 2.5.stable5
Squid Squid 2.5.stable3
Squid Squid 2.5.stable1
Squid Squid 2.5.stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5.stable7
NA
CVE-2005-0446
Squid 2.5.STABLE8 and previous versions allows remote malicious users to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.
Squid Squid 2.5 Stable9
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.4 .stable7
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.0 Patch2
Squid Squid 2.5 Stable3
Squid Squid 2.1.patch1
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.3 .stable5
Squid Squid 2.1.release
NA
CVE-2005-0718
Squid 2.5.STABLE7 and previous versions allows remote malicious users to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory.
Squid Squid 2.5 Stable9
Squid Squid 2.3.stable3
Squid Squid 2.2.stable2
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.2.stable3
Squid Squid 2.0.patch2
Squid Squid 2.4 .stable7
Squid Squid 2.1.patch2
Squid Squid 2.5.stable5
Squid Squid 2.2.stable4
Squid Squid 2.0.patch1
Squid Squid 2.0 Patch2
Squid Squid 2.5 Stable3
Squid Squid 2.1.patch1
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3.devel3
Squid Squid 2.5.stable3
Squid Squid 2.4.stable4
Squid Squid 2.3 .stable5
Squid Squid 2.1.release
NA
CVE-2005-0174
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and...
Squid Squid 2.5 Stable9
Squid Squid 2.5 .stable3
Squid Squid 2.5.stable5
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable3
Squid Squid 2.5.6
Squid Squid 2.5.stable1
Squid Squid 2.5 .stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 .stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable1
Squid Squid 2.5 .stable4
Squid Squid 2.5 Stable4
Squid Squid 2.5.stable7
NA
CVE-2005-0175
Squid 2.5 up to 2.5.STABLE7 allows remote malicious users to poison the cache via an HTTP response splitting attack.
Squid Squid 2.5 Stable9
Squid Squid 2.5 .stable3
Squid Squid 2.5.stable5
Squid Squid 2.5 Stable3
Squid Squid 2.5.stable3
Squid Squid 2.5.6
Squid Squid 2.5.stable1
Squid Squid 2.5 .stable5
Squid Squid 2.5.stable6
Squid Squid 2.5 .stable6
Squid Squid 2.5.stable4
Squid Squid 2.5.stable2
Squid Squid 2.5 .stable1
Squid Squid 2.5 .stable4
Squid Squid 2.5 Stable4
Squid Squid 2.5.stable7
NA
CVE-2004-0918
The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache prior to 2.4.STABLE7 allows remote malicious users to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.
Squid Squid 2.5 .stable3
Squid Squid 2.1 Patch2
Squid Squid 2.4 .stable7
Openpkg Openpkg 2.1
Squid Squid 2.0 Patch2
Squid Squid 2.4 .stable2
Squid Squid 2.3 .stable4
Squid Squid 2.3 .stable5
Squid Squid 2.5 .stable5
Openpkg Openpkg Current
Squid Squid 3.0 Pre1
Squid Squid 2.5 .stable6
Openpkg Openpkg 2.2
Squid Squid 2.4 .stable6
Squid Squid 2.5 .stable1
Squid Squid 2.4
Squid Squid 2.5 .stable4
Squid Squid 3.0 Pre3
Squid Squid 3.0 Pre2
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Ubuntu Ubuntu Linux 4.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2023-38506
CVE-2024-37198
CVE-2023-45197
CVE-2024-38621
CVE-2024-30103
elevation of privilege
CVE-2024-0044
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »