CVE-2005-3258
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.204 Low
EPSS
Percentile
96.4%
The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain “odd” responses.
Affected configurations
References
secunia.com/advisories/17271
secunia.com/advisories/17287
secunia.com/advisories/17338
secunia.com/advisories/17407
secunia.com/advisories/17513
secunia.com/advisories/17626
secunia.com/advisories/17645
securitytracker.com/id?1015085
www.novell.com/linux/security/advisories/2005_27_sr.html
www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE11-rfc1738_do_escape
www.vupen.com/english/advisories/2005/2151
Related
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.204 Low
EPSS
Percentile
96.4%