Lucene search
HistorySep 16, 2013 - 7:14 p.m.
CVE-2013-4123
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.3
Confidence
High
EPSS
0.178
Percentile
96.2%
client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header.
Affected configurations
Node
squid-cachesquidMatch3.3.0
ORsquid-cachesquidMatch3.3.0.2
ORsquid-cachesquidMatch3.3.0.3
ORsquid-cachesquidMatch3.3.1
ORsquid-cachesquidMatch3.3.2
ORsquid-cachesquidMatch3.3.3
ORsquid-cachesquidMatch3.3.4
ORsquid-cachesquidMatch3.3.5
ORsquid-cachesquidMatch3.3.6
ORsquid-cachesquidMatch3.3.7
Node
opensuseopensuseMatch12.3
Node
squid-cachesquidMatch3.2.0.1
ORsquid-cachesquidMatch3.2.0.2
ORsquid-cachesquidMatch3.2.0.3
ORsquid-cachesquidMatch3.2.0.4
ORsquid-cachesquidMatch3.2.0.5
ORsquid-cachesquidMatch3.2.0.6
ORsquid-cachesquidMatch3.2.0.7
ORsquid-cachesquidMatch3.2.0.8
ORsquid-cachesquidMatch3.2.0.9
ORsquid-cachesquidMatch3.2.0.10
ORsquid-cachesquidMatch3.2.0.11
ORsquid-cachesquidMatch3.2.0.12
ORsquid-cachesquidMatch3.2.0.13
ORsquid-cachesquidMatch3.2.0.14
ORsquid-cachesquidMatch3.2.0.15
ORsquid-cachesquidMatch3.2.0.16
ORsquid-cachesquidMatch3.2.0.17
ORsquid-cachesquidMatch3.2.0.18
ORsquid-cachesquidMatch3.2.0.19
ORsquid-cachesquidMatch3.2.1
ORsquid-cachesquidMatch3.2.2
ORsquid-cachesquidMatch3.2.3
ORsquid-cachesquidMatch3.2.4
ORsquid-cachesquidMatch3.2.5
ORsquid-cachesquidMatch3.2.6
ORsquid-cachesquidMatch3.2.7
ORsquid-cachesquidMatch3.2.8
ORsquid-cachesquidMatch3.2.9
ORsquid-cachesquidMatch3.2.10
ORsquid-cachesquidMatch3.2.11
ORsquid-cachesquidMatch3.2.12
References
Related
cve
cve
CVE-2013-4123
2022-10-03 16:14:59
nessus
nessus
Squid 3.2.x < 3.2.13 / 3.3.x < 3.3.8 Port Handling DoS
2013-07-24 00:00:00
FreeBSD : squid -- denial of service (30a04ab4-ed7b-11e2-8643-8c705af55518)
2013-07-16 00:00:00
cvelist
cvelist
CVE-2013-4123
2022-10-03 16:14:59
prion
prion
Design/Logic Flaw
2013-09-16 19:14:00
checkpoint_advisories
checkpoint_advisories
Squid HTTP Host Header Port Handling Denial of Service (CVE-2013-4123)
2013-10-13 00:00:00
ubuntucve
ubuntucve
CVE-2013-4123
2013-09-16 00:00:00
debiancve
debiancve
CVE-2013-4123
2022-10-03 16:14:59
openvas
openvas
Squid Host Header DoS Vulnerability (SQUID-2013:3)
2013-08-12 00:00:00
Mageia: Security Advisory (MGASA-2013-0228)
2022-01-28 00:00:00
Fedora Update for squid FEDORA-2013-13468
2013-08-20 00:00:00
freebsd
freebsd
squid -- denial of service
2013-07-13 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: squid-3.2.13-1.fc19
2013-08-02 21:49:28
[SECURITY] Fedora 19 Update: squid-3.3.12-1.fc19
2014-04-15 15:38:43
[SECURITY] Fedora 19 Update: squid-3.3.13-1.fc19
2014-09-10 13:25:50
mageia
mageia
Updated squid packages fix security vulnerabilities
2013-07-22 00:18:36
gentoo
gentoo
Squid: Multiple vulnerabilities
2013-09-27 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.3
Confidence
High
EPSS
0.178
Percentile
96.2%
Related for NVD:CVE-2013-4123