Lucene search

K
nvd[email protected]NVD:CVE-2014-0128
HistoryApr 14, 2014 - 3:09 p.m.

CVE-2014-0128

2014-04-1415:09:05
CWE-20
web.nvd.nist.gov
1

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.156

Percentile

96.0%

Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.

Affected configurations

NVD
Node
squid-cachesquidMatch3.1
OR
squid-cachesquidMatch3.1.0.1
OR
squid-cachesquidMatch3.1.0.2
OR
squid-cachesquidMatch3.1.0.3
OR
squid-cachesquidMatch3.1.0.4
OR
squid-cachesquidMatch3.1.0.5
OR
squid-cachesquidMatch3.1.0.6
OR
squid-cachesquidMatch3.1.0.7
OR
squid-cachesquidMatch3.1.0.8
OR
squid-cachesquidMatch3.1.0.9
OR
squid-cachesquidMatch3.1.0.10
OR
squid-cachesquidMatch3.1.0.11
OR
squid-cachesquidMatch3.1.0.12
OR
squid-cachesquidMatch3.1.0.13
OR
squid-cachesquidMatch3.1.0.14
OR
squid-cachesquidMatch3.1.0.15
OR
squid-cachesquidMatch3.1.0.16
OR
squid-cachesquidMatch3.1.0.17
OR
squid-cachesquidMatch3.1.0.18
OR
squid-cachesquidMatch3.1.1
OR
squid-cachesquidMatch3.1.2
OR
squid-cachesquidMatch3.1.3
OR
squid-cachesquidMatch3.1.4
OR
squid-cachesquidMatch3.1.5
OR
squid-cachesquidMatch3.1.5.1
OR
squid-cachesquidMatch3.1.6
OR
squid-cachesquidMatch3.1.7
OR
squid-cachesquidMatch3.1.8
OR
squid-cachesquidMatch3.1.9
OR
squid-cachesquidMatch3.1.10
OR
squid-cachesquidMatch3.1.11
OR
squid-cachesquidMatch3.1.12
OR
squid-cachesquidMatch3.1.13
OR
squid-cachesquidMatch3.1.14
OR
squid-cachesquidMatch3.1.15
OR
squid-cachesquidMatch3.2.0.1
OR
squid-cachesquidMatch3.2.0.2
OR
squid-cachesquidMatch3.2.0.3
OR
squid-cachesquidMatch3.2.0.4
OR
squid-cachesquidMatch3.2.0.5
OR
squid-cachesquidMatch3.2.0.6
OR
squid-cachesquidMatch3.2.0.7
OR
squid-cachesquidMatch3.2.0.8
OR
squid-cachesquidMatch3.2.0.9
OR
squid-cachesquidMatch3.2.0.10
OR
squid-cachesquidMatch3.2.0.11
OR
squid-cachesquidMatch3.2.0.12
OR
squid-cachesquidMatch3.2.0.13
OR
squid-cachesquidMatch3.2.0.14
OR
squid-cachesquidMatch3.2.0.15
OR
squid-cachesquidMatch3.2.0.16
OR
squid-cachesquidMatch3.2.0.17
OR
squid-cachesquidMatch3.2.0.18
OR
squid-cachesquidMatch3.2.0.19
OR
squid-cachesquidMatch3.2.1
OR
squid-cachesquidMatch3.2.2
OR
squid-cachesquidMatch3.2.3
OR
squid-cachesquidMatch3.2.4
OR
squid-cachesquidMatch3.2.5
OR
squid-cachesquidMatch3.2.6
OR
squid-cachesquidMatch3.2.7
OR
squid-cachesquidMatch3.2.8
OR
squid-cachesquidMatch3.2.9
OR
squid-cachesquidMatch3.2.10
OR
squid-cachesquidMatch3.2.11
OR
squid-cachesquidMatch3.2.12
OR
squid-cachesquidMatch3.3.0
OR
squid-cachesquidMatch3.3.0.2
OR
squid-cachesquidMatch3.3.0.3
OR
squid-cachesquidMatch3.3.1
OR
squid-cachesquidMatch3.3.2
OR
squid-cachesquidMatch3.3.3
OR
squid-cachesquidMatch3.3.4
OR
squid-cachesquidMatch3.3.5
OR
squid-cachesquidMatch3.3.6
OR
squid-cachesquidMatch3.3.7
OR
squid-cachesquidMatch3.3.8
OR
squid-cachesquidMatch3.3.9
OR
squid-cachesquidMatch3.3.10
OR
squid-cachesquidMatch3.3.11
OR
squid-cachesquidMatch3.4.0.1
OR
squid-cachesquidMatch3.4.0.2
OR
squid-cachesquidMatch3.4.0.3
OR
squid-cachesquidMatch3.4.1
OR
squid-cachesquidMatch3.4.2
OR
squid-cachesquidMatch3.4.3
Node
opensuseopensuseMatch11.4

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.156

Percentile

96.0%