Published: 15/01/2005 Updated: 11/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The WCCP message parsing code in Squid 2.5.STABLE7 and previous versions allows remote malicious users to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.

Vulnerable Product	Search on Vulmon	Subscribe to Product
squid squid 2.1_patch2
squid squid 2.3_.stable4
squid squid 2.4_stable7
squid squid 2.5.6
squid squid 2.5_.stable1
squid squid 2.5_.stable3
squid squid 2.6.stable1
squid squid 2.3_.stable5
squid squid 2.3_stable5
squid squid 2.5.stable1
squid squid 2.5.stable2
squid squid 2.5_.stable4
squid squid 2.5_.stable5
squid squid 2.4
squid squid 2.4_.stable2
squid squid 2.5.stable3
squid squid 2.5.stable4
squid squid 2.5.stable5
squid squid 2.5_.stable6
squid squid 2.5_stable3
squid squid 2.0_patch2
squid squid 2.4_.stable6
squid squid 2.4_.stable7
squid squid 2.5.stable6
squid squid 2.5.stable7
squid squid 2.5_stable4
squid squid 2.5_stable9

infamous41md discovered several Denial of Service vulnerabilities in squid ...

Synopsis squid security update Type/Severity Security Advisory: Important Topic An updated Squid package that fixes several security issues is now available Description Squid is a full-featured Web proxy cacheA buffer overflow flaw was found in the Gopher relay parser This bugcould allow ...

Synopsis squid security update Type/Severity Security Advisory: Important Topic An updated Squid package that fixes several security issues is now availableThis update has been rated as having important security impact by the Red HatSecurity Response Team Description Squid is a full-featu ...

NVD-CWE-Other http://www.squid-cache.org/Advisories/SQUID-2005_2.txt http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE7-wccp_denial_of_service.patch http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000923 http://www.debian.org/security/2005/dsa-651 http://security.gentoo.org/glsa/glsa-200501-25.xml http://www.redhat.com/support/errata/RHSA-2005-060.html http://www.redhat.com/support/errata/RHSA-2005-061.html http://www.novell.com/linux/security/advisories/2005_06_squid.html http://www.trustix.org/errata/2005/0003/http://secunia.com/advisories/13825 http://www.osvdb.org/12886 http://securitytracker.com/id?1012882 http://fedoranews.org/updates/FEDORA--.shtml http://www.securityfocus.com/bid/12275 http://www.mandriva.com/security/advisories?name=MDKSA-2005:014 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10269 https://usn.ubuntu.com/67-1/https://nvd.nist.gov

CVE-2005-0095

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect