EUVD-2020-17323

Malware in sbrugna...

SUSE CVE-2015-5400

Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cachepeer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request...

SUSE CVE-2020-24606

Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cachepeer is used with the cache digests feature. The problem exists because...

Denial Of Service (DoS)

Squid is vulnerable denial of service DoS. It allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cachepeer is used with the cache digests feature. The problem exists because...

CVE-2020-24606

Squid before 4.13 and 5.x before 5.0.4 allows a trusted peer to perform Denial of Service by consuming all available CPU cycles during handling of a crafted Cache Digest response message. This only occurs when cachepeer is used with the cache digests feature. The problem exists because...

DEBIAN-CVE-2015-5400

Squid before 3.5.6 does not properly handle CONNECT method peer responses when configured with cachepeer, which allows remote attackers to bypass intended restrictions and gain access to a backend proxy via a CONNECT request...

Squid < 3.5.6 Squid Cache Peer CONNECT Remote Access Bypass

According to its banner, the version of Squid running on the remote host is prior to 3.5.6. It is, therefore, potentially affected by an authentication bypass vulnerability due to a flaw in file tunnel.cc, which is triggered whenever cache peer CONNECT responses are blindly forwarded in a hierarc...