Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDE1156E90-7AD6-11DE-B26A-0048543D60CE
HistoryJul 27, 2009 - 12:00 a.m.

squid -- several remote denial of service vulnerabilities

2009-07-2700:00:00
vuxml.freebsd.org
14

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.947 High

EPSS

Percentile

99.3%

JSON

Squid security advisory 2009:2 reports:

Due to incorrect buffer limits and related bound checks Squid
is vulnerable to a denial of service attack when processing
specially crafted requests or responses.
Due to incorrect data validation Squid is vulnerable to a
denial of service attack when processing specially crafted
responses.
These problems allow any trusted client or external server to
perform a denial of service attack on the Squid service.

Squid-2.x releases are not affected.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchsquid= 3.0.1UNKNOWN
FreeBSDanynoarchsquid< 3.0.17UNKNOWN

Related

openvas 20
nessus 10
securityvulns 2
fedora 2
osv 2
debian 1
debiancve 2
ubuntucve 2
prion 2
nvd 2
cve 2
cvelist 2
checkpoint_advisories 2
gentoo 1
openvas
openvas
Fedora Core 10 FEDORA-2009-8327 (squid)
2009-09-02 00:00:00
Mandrake Security Advisory MDVSA-2009:178 (squid)
2009-08-17 00:00:00
FreeBSD Ports: squid
2009-07-29 00:00:00
nessus
nessus
Squid 3.0.STABLE16 / 3.10.11
2009-07-29 00:00:00
Fedora 11 : squid-3.0.STABLE18-1.fc11 (2009-8324)
2009-08-20 00:00:00
FreeBSD : squid -- several remote denial of service vulnerabilities (e1156e90-7ad6-11de-b26a-0048543d60ce)
2009-07-28 00:00:00
securityvulns
securityvulns
[ MDVSA-2009:161-1 ] squid
2009-08-10 00:00:00
squid proxy DoS
2009-09-23 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: squid-3.0.STABLE18-1.fc10
2009-08-17 21:59:33
[SECURITY] Fedora 11 Update: squid-3.0.STABLE18-1.fc11
2009-08-17 21:57:02
osv
osv
squid3 - denial of service
2009-07-28 00:00:00
squid3 - regression fix
2009-07-28 00:00:00
debian
debian
[SECURITY] [DSA 1843-2] New squid3 packages fix regression
2009-08-09 16:54:21
debiancve
debiancve
CVE-2009-2622
2009-07-28 17:30:01
CVE-2009-2621
2009-07-28 17:30:01
ubuntucve
ubuntucve
CVE-2009-2622
2009-07-28 00:00:00
CVE-2009-2621
2009-07-28 00:00:00
prion
prion
Design/Logic Flaw
2009-07-28 17:30:00
Design/Logic Flaw
2009-07-28 17:30:00
nvd
nvd
CVE-2009-2622
2009-07-28 17:30:01
CVE-2009-2621
2009-07-28 17:30:01
cve
cve
CVE-2009-2622
2009-07-28 17:30:01
CVE-2009-2621
2009-07-28 17:30:01
cvelist
cvelist
CVE-2009-2622
2009-07-28 17:00:00
CVE-2009-2621
2009-07-28 17:00:00
checkpoint_advisories
checkpoint_advisories
Squid Proxy Invalid HTTP Response Status Code Denial of Service (CVE-2009-2621)
2009-08-23 00:00:00
Squid Proxy Invalid HTTP Request Denial of Service (CVE-2009-2621)
2012-05-14 00:00:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2011-10-26 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.947 High

EPSS

Percentile

99.3%

JSON
Related for E1156E90-7AD6-11DE-B26A-0048543D60CE
openvas20nessus10securityvulns2fedora2osv2debian1debiancve2ubuntucve2prion2nvd2cve2cvelist2checkpoint_advisories2gentoo1