Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-2622
HistoryJul 28, 2009 - 5:30 p.m.

CVE-2009-2622

2009-07-2817:30:01
CWE-20
[email protected]
web.nvd.nist.gov
41
cve-2009-2622
squid
denial of service
remote attack
vulnerability
nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.947 High

EPSS

Percentile

99.3%

JSON

Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote attackers to cause a denial of service via malformed requests including (1) “missing or mismatched protocol identifier,” (2) missing or negative status value," (3) “missing version,” or (4) “missing or invalid status number,” related to (a) HttpMsg.cc and (b) HttpReply.cc.

Affected configurations

NVD
Node
squid-cachesquidMatch3.0pre1
OR
squid-cachesquidMatch3.0pre2
OR
squid-cachesquidMatch3.0pre3
OR
squid-cachesquidMatch3.0pre4
OR
squid-cachesquidMatch3.0pre5
OR
squid-cachesquidMatch3.0pre6
OR
squid-cachesquidMatch3.0pre7
OR
squid-cachesquidMatch3.0stable1
OR
squid-cachesquidMatch3.0stable10
OR
squid-cachesquidMatch3.0stable11
OR
squid-cachesquidMatch3.0stable12
OR
squid-cachesquidMatch3.0stable13
OR
squid-cachesquidMatch3.0stable14
OR
squid-cachesquidMatch3.0stable15
OR
squid-cachesquidMatch3.0stable2
OR
squid-cachesquidMatch3.0stable3
OR
squid-cachesquidMatch3.0stable4
OR
squid-cachesquidMatch3.0stable5
OR
squid-cachesquidMatch3.0stable6
OR
squid-cachesquidMatch3.0stable7
OR
squid-cachesquidMatch3.0stable8
OR
squid-cachesquidMatch3.0stable9
OR
squid-cachesquidMatch3.0rc1stable11
OR
squid-cachesquidMatch3.0rc4
OR
squid-cachesquidMatch3.1
OR
squid-cachesquidMatch3.1.0.1
OR
squid-cachesquidMatch3.1.0.2
OR
squid-cachesquidMatch3.1.0.3
OR
squid-cachesquidMatch3.1.0.4

Related

ubuntucve 1
prion 1
nvd 1
debiancve 1
cvelist 1
nessus 10
openvas 18
securityvulns 2
freebsd 1
fedora 2
osv 2
debian 1
gentoo 1
ubuntucve
ubuntucve
CVE-2009-2622
2009-07-28 00:00:00
prion
prion
Design/Logic Flaw
2009-07-28 17:30:00
nvd
nvd
CVE-2009-2622
2009-07-28 17:30:01
debiancve
debiancve
CVE-2009-2622
2009-07-28 17:30:01
cvelist
cvelist
CVE-2009-2622
2009-07-28 17:00:00
nessus
nessus
Squid 3.0.STABLE16 / 3.10.11
2009-07-29 00:00:00
FreeBSD : squid -- several remote denial of service vulnerabilities (e1156e90-7ad6-11de-b26a-0048543d60ce)
2009-07-28 00:00:00
Mandriva Linux Security Advisory : squid (MDVSA-2009:161-1)
2009-07-28 00:00:00
openvas
openvas
FreeBSD Ports: squid
2009-07-29 00:00:00
FreeBSD Ports: squid
2009-07-29 00:00:00
Fedora Core 10 FEDORA-2009-8327 (squid)
2009-09-02 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:161-1 ] squid
2009-08-10 00:00:00
squid proxy DoS
2009-09-23 00:00:00
freebsd
freebsd
squid -- several remote denial of service vulnerabilities
2009-07-27 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: squid-3.0.STABLE18-1.fc10
2009-08-17 21:59:33
[SECURITY] Fedora 11 Update: squid-3.0.STABLE18-1.fc11
2009-08-17 21:57:02
osv
osv
squid3 - denial of service
2009-07-28 00:00:00
squid3 - regression fix
2009-07-28 00:00:00
debian
debian
[SECURITY] [DSA 1843-2] New squid3 packages fix regression
2009-08-09 16:54:21
gentoo
gentoo
Squid: Multiple vulnerabilities
2011-10-26 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.947 High

EPSS

Percentile

99.3%

JSON
Related for CVE-2009-2622
ubuntucve1prion1nvd1debiancve1cvelist1nessus10openvas18securityvulns2freebsd1fedora2osv2debian1gentoo1