Lucene search
K

81 matches found

Rockylinux
Rockylinux
added 2020/05/06 12:52 p.m.36 views

squid:4 security update

An update is available for libecap. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Squid is a high-performance proxy caching server for web clients, supporting...

9.8CVSS10.2AI score0.27246EPSS
Exploits0
n0where
n0where
added 2017/03/30 6:19 p.m.15 views

Analyze Web-based Network Traffic: squidmagic

Analyze Web-based Network Traffic squidmagic is a tool designed to analyze a web-based network traffic to detect central command and control C&C servers and Malicious site, using Squid proxy server and Spamhaus. Install Ubuntu 16.04 Clone this repo & execute the script squidmagic ./install.sh ✓...

0.6AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/05/31 5:56 a.m.47 views

Moderate: Red Hat Security Advisory: squid security update

An update for squid is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

8.8CVSS7.4AI score0.77559EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2016/03/17 12:0 a.m.6 views

The vulnerability of the Squid proxy server allows a hacker to cause a service failure.

The vulnerability of the http.cc function in the Squid proxy server exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to cause a service failure—such as the appearance of an “Assertion failure” message and the termination of the...

5CVSS7.2AI score0.10154EPSS
Exploits0References4Affected Software1
Fedora
Fedora
added 2014/09/05 10:21 p.m.43 views

[SECURITY] Fedora 20 Update: squid-3.3.13-1.fc20

Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DN...

5CVSS6.4AI score0.5622EPSS
Exploits0
securityvulns
securityvulns
added 2012/01/02 12:0 a.m.33 views

squid proxy server buffer overflow

Crash on DNS response parsing...

5CVSS4.3AI score0.37186EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/08/25 12:0 a.m.25 views

Squid 3.1.6 DNS Reply Denial of Service

According to its banner, the version of the Squid proxy caching server installed on the remote host is 3.1.6. This version is affected by a denial of service vulnerability that is caused by an assertion failure when contacting IPv4-only DNS resolvers. Note that Nessus has relied only on the versi...

5CVSS8AI score0.31465EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2010/02/05 12:0 a.m.30 views

Squid < 3.0.STABLE19 / 3.1.0.14 / 2.6.STABLE23 strListGetItem Function Remote DoS

According to its banner, the version of the Squid proxy caching server installed on the remote host is older than 3.0.STABLE19 / 3.1.0.14 / 2.6.STABLE23. A bug in the 'strListGetItem' function in 'src/HttpHeaderTools.c' can result in an infinite loop when processing a specially crafted auth heade...

5CVSS5.5AI score0.36732EPSS
Exploits1References5
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.35 views

squid proxy server DoS

Crash on authentication, crash on DNS reply parsing...

5CVSS3.1AI score0.36732EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/07/29 12:0 a.m.36 views

Squid 3.0.STABLE16 / 3.10.11

According to its banner, the version of the Squid proxy caching server installed on the remote host is older than 3.0.STABLE17 or 3.1.0.12. Such versions reportedly use incorrect bounds checking when processing some requests or responses. Squid-2.x releases are not vulnerable. C Tenable Network...

5CVSS5.5AI score0.56908EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2008/03/05 11:44 p.m.22 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS6.3AI score0.06681EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2008/03/05 11:0 p.m.24 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS8.2AI score0.06681EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2006/03/15 2:14 p.m.25 views

Moderate: Red Hat Security Advisory: squid security update

Updated squid packages that fix a security vulnerability as well as several bugs are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HT...

5CVSS5.7AI score0.03404EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2006/03/08 12:0 a.m.36 views

RHEL 4 : squid (RHSA-2006:0052)

The remote Redhat Enterprise Linux 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2006:0052 advisory. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. A denial of service flaw was found i...

5CVSS5.6AI score0.03404EPSS
Exploits0References10
securityvulns
securityvulns
added 2005/01/20 12:0 a.m.26 views

squid proxy server access control lists protection bypass

If LDAP authentication is used space can be added to username to bypass ACL restrictuions...

3.6AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2004/07/31 12:0 a.m.26 views

Mandrake Linux Security Advisory : squid (MDKSA-2001:066)

The Squid proxy server has a serious security flaw in versions 2.3.STABLE2 through 2.3.STABLE4. This problem surfaces when Squid is used in httpdaccel mode. If you configure httpaccelwithproxy off then any request to Squid is allowed. Malicious users may use your proxy to portscan remote systems,...

7.5CVSS5.5AI score0.01962EPSS
Exploits0References2
Cvelist
Cvelist
added 2002/03/09 5:0 a.m.17 views

CVE-2001-0843

Squid proxy server 2.4 and earlier allows remote attackers to cause a denial of service crash via a mkdir-only FTP PUT request...

6.4AI score0.02847EPSS
Exploits0References8
CERT
CERT
added 2002/03/04 12:0 a.m.37 views

Squid Proxy Server contains buffer overflow in parsing of the authentication portion of FTP URLs

Overview There is a remotely exploitable buffer overflow in the Squid proxy/cache server. Exploitation of this vulnerability could lead to an intruder gaining a shell on the target Squid server. Description Squid versions 2.3 and 2.4 are vulnerable to a buffer overflow in the code that parses FTP...

7.5CVSS7.8AI score0.09449EPSS
Exploits1References3
exploitpack
exploitpack
added 2002/02/21 12:0 a.m.23 views

Squid 2.0-4 - Cache FTP Proxy URL Buffer Overflow

Squid 2.0-4 - Cache FTP Proxy URL Buffer Overflow // source: https://www.securityfocus.com/bid/4148/info A buffer overflow exists in the Squid proxy server's FTP URL handling. If a user has the ability to use the Squid process to proxy FTP requests, it may be possible for the user make a maliciou...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2002/02/21 12:0 a.m.37 views

Squid 2.0-4 - Cache FTP Proxy URL Buffer Overflow

// source: https://www.securityfocus.com/bid/4148/info A buffer overflow exists in the Squid proxy server's FTP URL handling. If a user has the ability to use the Squid process to proxy FTP requests, it may be possible for the user make a malicious request. By sending a custom-crafted ftp:// URL...

7.4AI score
Exploits0
Rows per page
Query Builder