Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squid squid 2.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0714
FTP proxy in Squid prior to 2.4.STABLE6 does not compare the IP addresses of control and data connections with the FTP server, which allows remote malicious users to bypass firewall rules or spoof FTP server responses.
Squid Squid
NA
CVE-2002-0715
Vulnerability in Squid prior to 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password.
Squid Squid
NA
CVE-2002-0163
Heap-based buffer overflow in Squid prior to 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote malicious users to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.
Squid Squid
1 EDB exploit
NA
CVE-2002-0068
Squid 2.4 STABLE3 and previous versions allows remote malicious users to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.
Squid Squid
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
Redhat Linux 7.0
1 EDB exploit
NA
CVE-2002-0069
Memory leak in SNMP in Squid 2.4 STABLE3 and previous versions allows remote malicious users to cause a denial of service.
Squid Squid
Redhat Linux 6.2
Redhat Linux 7.0
Redhat Linux 7.2
Redhat Linux 7.1
NA
CVE-2002-0067
Squid 2.4 STABLE3 and previous versions does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote malicious users to bypass intended access restrictions.
Squid Squid
Redhat Linux 7.0
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
NA
CVE-2001-0843
Squid proxy server 2.4 and previous versions allows remote malicious users to cause a denial of service (crash) via a mkdir-only FTP PUT request.
Squid Squid Web Proxy
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3