Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux server tus 8.2 |
||
redhat enterprise linux server aus 8.2 |
||
redhat enterprise linux server tus 8.4 |
||
redhat enterprise linux server aus 8.4 |
||
redhat enterprise linux server aus 8.6 |
||
redhat enterprise linux server tus 8.6 |
||
redhat enterprise linux eus 8.6 |
||
redhat enterprise linux 9.0 |
||
redhat enterprise linux eus 9.0 |
||
redhat enterprise linux server tus 8.8 |
||
redhat enterprise linux eus 8.8 |
||
redhat enterprise linux server aus 9.2 |
||
redhat enterprise linux eus 9.2 |
||
redhat enterprise linux for power little endian 8.0_ppc64le |
||
redhat enterprise linux for ibm z systems 8.0_s390x |
||
redhat enterprise linux for arm 64 8.0_aarch64 |
||
redhat enterprise linux server tus 9.2 |