CVE-2007-0247

2007-01-1618:28:00

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.5

Confidence

High

EPSS

0.968

Percentile

99.7%

JSON

squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.

Affected configurations

Nvd

Node

squidsquidMatch2.6.stable1

squidsquidMatch2.6.stable2

squidsquidMatch2.6.stable3

squidsquidMatch2.6.stable4

squidsquidMatch2.6.stable5

squidsquidMatch2.6.stable6

VendorProductVersionCPE
squidsquid2.6.stable1cpe:2.3:a:squid:squid:2.6.stable1:*:*:*:*:*:*:*
squidsquid2.6.stable2cpe:2.3:a:squid:squid:2.6.stable2:*:*:*:*:*:*:*
squidsquid2.6.stable3cpe:2.3:a:squid:squid:2.6.stable3:*:*:*:*:*:*:*
squidsquid2.6.stable4cpe:2.3:a:squid:squid:2.6.stable4:*:*:*:*:*:*:*
squidsquid2.6.stable5cpe:2.3:a:squid:squid:2.6.stable5:*:*:*:*:*:*:*
squidsquid2.6.stable6cpe:2.3:a:squid:squid:2.6.stable6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
squid	squid	2.6.stable1	cpe:2.3:a:squid:squid:2.6.stable1:::::::*
squid	squid	2.6.stable2	cpe:2.3:a:squid:squid:2.6.stable2:::::::*
squid	squid	2.6.stable3	cpe:2.3:a:squid:squid:2.6.stable3:::::::*
squid	squid	2.6.stable4	cpe:2.3:a:squid:squid:2.6.stable4:::::::*
squid	squid	2.6.stable5	cpe:2.3:a:squid:squid:2.6.stable5:::::::*
squid	squid	2.6.stable6	cpe:2.3:a:squid:squid:2.6.stable6:::::::*