Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2004-0918
HistoryJan 27, 2005 - 5:00 a.m.

CVE-2004-0918

2005-01-2705:00:00
CWE-399
[email protected]
web.nvd.nist.gov
4

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.959

Percentile

99.5%

JSON

The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.

Affected configurations

Nvd
Node
openpkgopenpkgMatch2.1
OR
openpkgopenpkgMatch2.2
OR
openpkgopenpkgMatchcurrent
OR
squidsquidMatch2.0_patch2
OR
squidsquidMatch2.1_patch2
OR
squidsquidMatch2.3_.stable4
OR
squidsquidMatch2.3_.stable5
OR
squidsquidMatch2.4
OR
squidsquidMatch2.4_.stable2
OR
squidsquidMatch2.4_.stable6
OR
squidsquidMatch2.4_.stable7
OR
squidsquidMatch2.5_.stable1
OR
squidsquidMatch2.5_.stable3
OR
squidsquidMatch2.5_.stable4
OR
squidsquidMatch2.5_.stable5
OR
squidsquidMatch2.5_.stable6
OR
squidsquidMatch3.0_pre1
OR
squidsquidMatch3.0_pre2
OR
squidsquidMatch3.0_pre3
Node
gentoolinux
OR
redhatfedora_coreMatchcore_2.0
OR
trustixsecure_linuxMatch1.5
OR
trustixsecure_linuxMatch2.0
OR
trustixsecure_linuxMatch2.1
OR
ubuntuubuntu_linuxMatch4.1ia64
OR
ubuntuubuntu_linuxMatch4.1ppc

References

Related

nessus 11
openvas 15
freebsd 1
debiancve 1
cvelist 1
gentoo 1
fedora 2
cve 1
ubuntucve 1
securityvulns 1
redhat 1
checkpoint_advisories 1
ubuntu 1
debian 2
osv 1
suse 1
nessus
nessus
FreeBSD : squid -- SNMP module denial-of-service vulnerability (65e99f52-1c5f-11d9-bc4a-000c41e2cdad)
2009-04-23 00:00:00
Fedora 9 : squid-3.0.STABLE7-1.fc9 (2008-6045)
2008-07-08 00:00:00
RHEL 2.1 / 3 : squid (RHSA-2004:591)
2004-10-21 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200410-15 (squid)
2008-09-24 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
Squid remote denial of service
2005-11-03 00:00:00
freebsd
freebsd
squid -- SNMP module denial-of-service vulnerability
2004-09-29 00:00:00
debiancve
debiancve
CVE-2004-0918
2005-01-27 05:00:00
cvelist
cvelist
CVE-2004-0918
2004-10-21 04:00:00
gentoo
gentoo
Squid: Remote DoS vulnerability
2004-10-18 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: squid-3.0.STABLE7-1.fc9
2008-07-03 03:16:28
[SECURITY] Fedora 9 Update: squid-3.0.STABLE13-1.fc9
2009-02-12 20:37:22
cve
cve
CVE-2004-0918
2005-01-27 05:00:00
ubuntucve
ubuntucve
CVE-2004-0918
2005-01-27 00:00:00
securityvulns
securityvulns
[Full-Disclosure] iDEFENSE Security Advisory 10.11.04: Squid Web Proxy Cache Remote Denial of Service Vulnerability
2004-10-12 00:00:00
redhat
redhat
(RHSA-2004:591) squid security update
2004-10-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid SNMP Parser ASN.1 Header Parsing Denial of Service (CVE-2004-0918)
2009-10-28 00:00:00
ubuntu
ubuntu
squid vulnerabilities
2004-11-07 00:00:00
debian
debian
[SECURITY] [DSA 576-1] New Squid packages fix several vulnerabilities
2004-10-29 05:41:12
[SECURITY] [DSA 576-1] New Squid packages fix several vulnerabilities
2004-10-29 05:41:12
osv
osv
squid - multiple
2004-10-29 00:00:00
suse
suse
remote system compromise in xpdf, gpdf, kdegraphics3-pdf, pdftohtml, cups
2004-10-26 10:45:14

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.4

Confidence

High

EPSS

0.959

Percentile

99.5%

JSON
Related for NVD:CVE-2004-0918
nessus11openvas15freebsd1debiancve1cvelist1gentoo1fedora2cve1ubuntucve1securityvulns1redhat1checkpoint_advisories1ubuntu1debian2osv1suse1