Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2005-0241
HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0241

2005-05-0204:00:00
Debian Security Bug Tracker
security-tracker.debian.org
8

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.965 High

EPSS

Percentile

99.6%

JSON

The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling “oversized” HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size.

Related

cve 1
cert 1
checkpoint_advisories 1
nessus 6
openvas 6
freebsd 1
ubuntucve 1
suse 2
redhat 2
cve
cve
CVE-2005-0241
2005-05-02 04:00:00
cert
cert
Squid fails to properly handle oversized reply headers
2005-02-04 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid Proxy Oversized Reply Header Handling - Improved Performance (CVE-2005-0241)
2013-05-29 00:00:00
nessus
nessus
FreeBSD : squid -- correct handling of oversized HTTP reply headers (bfda39de-7467-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
SUSE-SA:2005:008: squid
2005-02-23 00:00:00
Squid < 2.5.STABLE8 Multiple Vulnerabilities
2005-01-18 00:00:00
openvas
openvas
FreeBSD Ports: squid
2008-09-04 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
freebsd
freebsd
squid -- correct handling of oversized HTTP reply headers
2005-01-31 00:00:00
ubuntucve
ubuntucve
CVE-2005-0241
2005-05-02 00:00:00
suse
suse
remote denial of service in squid
2005-02-22 13:31:16
remote command execution in squid
2005-02-10 15:13:39
redhat
redhat
(RHSA-2005:061) squid security update
2005-02-11 00:00:00
(RHSA-2005:060) squid security update
2005-02-15 00:00:00

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.965 High

EPSS

Percentile

99.6%

JSON
Related for DEBIANCVE:CVE-2005-0241
cve1cert1checkpoint_advisories1nessus6openvas6freebsd1ubuntucve1suse2redhat2