Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-0095
HistoryJan 15, 2005 - 5:00 a.m.

CVE-2005-0095

2005-01-1505:00:00
[email protected]
web.nvd.nist.gov
1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.7%

JSON

The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid’s home router and invalid WCCP_I_SEE_YOU cache numbers.

Affected configurations

NVD
Node
squidsquidMatch2.0_patch2
OR
squidsquidMatch2.1_patch2
OR
squidsquidMatch2.3_.stable4
OR
squidsquidMatch2.3_.stable5
OR
squidsquidMatch2.3_stable5
OR
squidsquidMatch2.4
OR
squidsquidMatch2.4_.stable2
OR
squidsquidMatch2.4_.stable6
OR
squidsquidMatch2.4_.stable7
OR
squidsquidMatch2.4_stable7
OR
squidsquidMatch2.5.6
OR
squidsquidMatch2.5.stable1
OR
squidsquidMatch2.5.stable2
OR
squidsquidMatch2.5.stable3
OR
squidsquidMatch2.5.stable4
OR
squidsquidMatch2.5.stable5
OR
squidsquidMatch2.5.stable6
OR
squidsquidMatch2.5.stable7
OR
squidsquidMatch2.5_.stable1
OR
squidsquidMatch2.5_.stable3
OR
squidsquidMatch2.5_.stable4
OR
squidsquidMatch2.5_.stable5
OR
squidsquidMatch2.5_.stable6
OR
squidsquidMatch2.5_stable3
OR
squidsquidMatch2.5_stable4
OR
squidsquidMatch2.5_stable9
OR
squidsquidMatch2.6.stable1

Related

checkpoint_advisories 1
cvelist 1
openvas 9
freebsd 1
ubuntucve 1
debiancve 1
cve 1
nessus 11
debian 2
osv 1
ubuntu 1
gentoo 1
redhat 2
suse 1
cert 1
checkpoint_advisories
checkpoint_advisories
Squid WCCP Message Parsing Denial Of Service (CVE-2005-0095)
2009-10-26 00:00:00
cvelist
cvelist
CVE-2005-0095
2005-01-19 05:00:00
openvas
openvas
FreeBSD Ports: squid
2008-09-04 00:00:00
FreeBSD Ports: squid
2008-09-04 00:00:00
Debian Security Advisory DSA 651-1 (squid)
2008-01-17 00:00:00
freebsd
freebsd
squid -- denial of service with forged WCCP messages
2005-01-07 00:00:00
ubuntucve
ubuntucve
CVE-2005-0095
2005-01-15 00:00:00
debiancve
debiancve
CVE-2005-0095
2005-01-19 05:00:00
cve
cve
CVE-2005-0095
2005-01-19 05:00:00
nessus
nessus
FreeBSD : squid -- denial of service with forged WCCP messages (5fe7e27a-64cb-11d9-9e1e-c296ac722cb3)
2005-07-13 00:00:00
Mandrake Linux Security Advisory : squid (MDKSA-2005:014)
2005-01-25 00:00:00
Debian DSA-651-1 : squid - buffer overflow, integer overflow
2005-01-25 00:00:00
debian
debian
[SECURITY] [DSA 651-1] New squid packages fix denial of service
2005-01-20 17:06:36
[SECURITY] [DSA 651-1] New squid packages fix denial of service
2005-01-20 17:06:36
osv
osv
squid - buffer overflow, integer overflow
2005-01-20 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2005-01-21 00:00:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2005-01-16 00:00:00
redhat
redhat
(RHSA-2005:061) squid security update
2005-02-11 00:00:00
(RHSA-2005:060) squid security update
2005-02-15 00:00:00
suse
suse
remote command execution in squid
2005-02-10 15:13:39
cert
cert
mod_python vulnerable to information disclosure via crafted URL
2005-02-21 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.7%

JSON
Related for NVD:CVE-2005-0095
checkpoint_advisories1cvelist1openvas9freebsd1ubuntucve1debiancve1cve1nessus11debian2osv1ubuntu1gentoo1redhat2suse1cert1