An issue exists in Squid prior to 4.15 and 5.x prior to 5.0.6. An integer overflow problem allows a remote server to achieve Denial of Service when delivering responses to HTTP Range requests. The issue trigger is a header that can be expected to exist in HTTP traffic without any malicious intent.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid 2.5.stable6 |
||
squid-cache squid 2.6 |
||
squid-cache squid 2.5.stable9 |
||
squid-cache squid 2.7 |
||
squid-cache squid 2.5.stable4 |
||
squid-cache squid 2.5.stable7 |
||
squid-cache squid 2.5.stable14 |
||
squid-cache squid 2.5.stable2 |
||
squid-cache squid 2.5.stable5 |
||
squid-cache squid 2.5.stable12 |
||
squid-cache squid 2.5.stable13 |
||
squid-cache squid 2.5.stable11 |
||
squid-cache squid 2.5.stable3 |
||
squid-cache squid 2.5.stable8 |
||
squid-cache squid 2.5.stable10 |
||
squid-cache squid |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
netapp cloud manager - |