Lucene search
FreeBSDBFDA39DE-7467-11D9-9E1E-C296AC722CB3HistoryJan 31, 2005 - 12:00 a.m.
squid -- correct handling of oversized HTTP reply headers
2005-01-3100:00:00
vuxml.freebsd.org
11
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.965 High
EPSS
Percentile
99.6%
The squid patches page notes:
This patch addresses a HTTP protocol mismatch related to oversized
reply headers. In addition it enhances the cache.log reporting on
reply header parsing failures to make it easier to track down which
sites are malfunctioning.
It is believed that this bug may lead to cache pollution or
allow access controls to be bypassed.
Related
cve
cve
CVE-2005-0241
2005-05-02 04:00:00
cert
cert
Squid fails to properly handle oversized reply headers
2005-02-04 00:00:00
checkpoint_advisories
checkpoint_advisories
nessus
nessus
FreeBSD : squid -- correct handling of oversized HTTP reply headers (bfda39de-7467-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
SUSE-SA:2005:008: squid
2005-02-23 00:00:00
Squid < 2.5.STABLE8 Multiple Vulnerabilities
2005-01-18 00:00:00
openvas
openvas
FreeBSD Ports: squid
2008-09-04 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
SLES9: Security update for squid
2009-10-10 00:00:00
debiancve
debiancve
CVE-2005-0241
2005-05-02 04:00:00
ubuntucve
ubuntucve
CVE-2005-0241
2005-05-02 00:00:00
suse
suse
remote denial of service in squid
2005-02-22 13:31:16
remote command execution in squid
2005-02-10 15:13:39
redhat
redhat
(RHSA-2005:061) squid security update
2005-02-11 00:00:00
(RHSA-2005:060) squid security update
2005-02-15 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.965 High
EPSS
Percentile
99.6%
Related for BFDA39DE-7467-11D9-9E1E-C296AC722CB3