Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2016-3947
Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid prior to 3.5.16 and 4.x prior to 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log ...
Squid-cache Squid 4.0.5
Squid-cache Squid 4.0.4
Squid-cache Squid 4.0.3
Squid-cache Squid 4.0.2
Squid-cache Squid 4.0.1
Squid-cache Squid 4.0.6
Squid-cache Squid 4.0.7
Squid-cache Squid
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
668
VMScore
CVE-2005-1711
Gibraltar Firewall 2.2 and previous versions, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected.
Clam Anti-virus Clamav 0.90.2
Squid Squid 2.6.stable1
Gibraltar Gibraltar Firewall 2.2
668
VMScore
CVE-2005-1345
Squid 2.5.STABLE9 and previous versions does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
Squid Squid 2.5.stable6
Squid Squid 2.5.stable7
Squid Squid 2.5.stable1
Squid Squid 2.5.stable2
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.5.stable5
Squid Squid 2.5.stable8
Squid Squid 2.5.stable9
668
VMScore
CVE-2005-0173
squid_ldap_auth in Squid 2.5 and previous versions allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
Squid Squid 2.1.patch2
Squid Squid 2.1.pre1
Squid Squid 2.2.pre2
Squid Squid 2.2.stable1
Squid Squid 2.3.stable2
Squid Squid 2.3.stable3
Squid Squid 2.4.stable6
Squid Squid 2.4.stable7
Squid Squid 2.0.patch2
Squid Squid 2.0.pre1
Squid Squid 2.1.release
Squid Squid 2.2.devel3
Squid Squid 2.2.stable4
Squid Squid 2.2.stable5
Squid Squid 2.4.stable1
Squid Squid 2.4.stable2
Squid Squid 2.5.stable3
Squid Squid 2.5.stable4
Squid Squid 2.0.release
Squid Squid 2.1.patch1
Squid Squid 2.2.devel4
Squid Squid 2.2.pre1
668
VMScore
CVE-2005-0211
Buffer overflow in wccp.c in Squid 2.5 prior to 2.5.STABLE7 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
Squid-cache Squid 2.5.stable1
Squid-cache Squid 2.5.stable6
Squid-cache Squid 2.5.stable3
Squid-cache Squid 2.5.stable5
Squid-cache Squid 2.5.stable2
Squid-cache Squid 2.5.stable4
Debian Debian Linux 3.0
668
VMScore
CVE-2002-0916
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and previous versions, allows remote malicious users to execute arbitrary code via format strings in the user name, which are not properly handl...
Stellar-x Software Msntauth
668
VMScore
CVE-2002-0735
Format string vulnerability in the logging() function in C-Note Squid LDAP authentication module (squid_auth_LDAP) 2.0.2 and previous versions allows remote malicious users to cause a denial of service and possibly execute arbitrary code by triggering log messages.
Padl Software Nss Ldap Build 184
Padl Software Nss Ldap Build 185
Padl Software Nss Ldap Build 189
Padl Software Pam Ldap Build 143
Padl Software Nss Ldap Build 181
Padl Software Nss Ldap Build 183
Padl Software Nss Ldap Build 187
Padl Software Nss Ldap Build 188
C-note Squid Auth Ldap 1.2 B2
C-note Squid Auth Ldap 2.0
Padl Software Nss Ldap Build 180
Padl Software Nss Ldap Build 185.3
Padl Software Nss Ldap Build 186
C-note Squid Auth Ldap 1.0.1
C-note Squid Auth Ldap 1.0.2 Beta
Padl Software Nss Ldap Build 185.1
Padl Software Nss Ldap Build 185.2
668
VMScore
CVE-2002-0713
Buffer overflows in Squid prior to 2.4.STABLE6 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code (1) via the MSNT auth helper (msnt_auth) when using denyusers or allowusers files, (2) via the gopher client, or (3) via the FTP se...
Squid Squid
668
VMScore
CVE-2002-0714
FTP proxy in Squid prior to 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote malicious users to bypass firewall rules or spoof FTP server responses.
Squid Squid
668
VMScore
CVE-2002-0067
Squid 2.4 STABLE3 and previous versions does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote malicious users to bypass intended access restrictions.
Squid Squid
Redhat Linux 7.0
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »