Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid 2.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0163
Heap-based buffer overflow in Squid prior to 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote malicious users to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.
Squid Squid
1 EDB exploit
NA
CVE-2002-0713
Buffer overflows in Squid prior to 2.4.STABLE6 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code (1) via the MSNT auth helper (msnt_auth) when using denyusers or allowusers files, (2) via the gopher client, or (3) via the FTP se...
Squid Squid
NA
CVE-2001-0843
Squid proxy server 2.4 and previous versions allows remote malicious users to cause a denial of service (crash) via a mkdir-only FTP PUT request.
Squid Squid Web Proxy
NA
CVE-2002-0069
Memory leak in SNMP in Squid 2.4 STABLE3 and previous versions allows remote malicious users to cause a denial of service.
Squid Squid
Redhat Linux 6.2
Redhat Linux 7.0
Redhat Linux 7.2
Redhat Linux 7.1
NA
CVE-2002-0067
Squid 2.4 STABLE3 and previous versions does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote malicious users to bypass intended access restrictions.
Squid Squid
Redhat Linux 7.0
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
NA
CVE-2002-0068
Squid 2.4 STABLE3 and previous versions allows remote malicious users to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.
Squid Squid
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
Redhat Linux 7.0
1 EDB exploit
NA
CVE-2002-0916
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and previous versions, allows remote malicious users to execute arbitrary code via format strings in the user name, which are not properly handl...
Stellar-x Software Msntauth
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3