Lucene search
K

79 matches found

OSV
OSV
added 2019/04/25 9:29 p.m.3 views

CVE-2019-3721

Dell EMC Open Manage System Administrator OMSA versions prior to 9.3.0 contain an Improper Range Header Processing Vulnerability. A remote unauthenticated attacker may send crafted requests with overlapping ranges to cause the application to compress each of the requested bytes, resulting in a...

7.5CVSS6.1AI score0.02584EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.8 views

The vulnerability of the Squid HTTP Proxy Server software allows a malicious intruder to compromise the accessibility of protected information.

The vulnerability in HttpHdrRange.cc in Squid allows malicious actors to induce a service failure by sending requests containing specially crafted Range headers with unidentified byte-range values...

5CVSS7.2AI score0.5622EPSS
Exploits0References3Affected Software1
CakePHP
CakePHP
added 2016/03/13 12:0 a.m.36 views

CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5 Released

CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5 Released The CakePHP core team is happy to announce the immediate availability of CakePHP 2.6.13, 2.7.11, 2.8.2, 3.0.17, 3.1.12, and 3.2.5. These releases contain security fixes. 3.2.5 and 2.8.2 also contain bugfixes. Security Fixes These...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.42 views

Amazon Linux: Security Advisory (ALAS-2014-411)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.5622EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/10/24 12:0 a.m.32 views

Amazon Linux AMI : squid (ALAS-2014-433)

A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid. CVE-2014-3609 A buffer overflow flaw was found in Squid's DNS lookup module. A remote attacker able to send HTTP requests to...

7.5CVSS7.7AI score0.5622EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2014/09/30 12:0 a.m.30 views

Squid 3.x < 3.3.13 / 3.4.7 Request Processing DoS

According to its banner, the version of Squid running on the remote host is 3.x prior to 3.3.13 or 3.4.7. It is, therefore, affected by a denial of service vulnerability. The flaw exists due to user-supplied input not being properly validated in request parsing. This allows a remote attacker to...

5CVSS7.1AI score0.5622EPSS
Exploits0References4
Amazon
Amazon
added 2014/09/17 12:0 a.m.52 views

Important: squid

Issue Overview: A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid. CVE-2014-3609 A buffer overflow flaw was found in Squid's DNS lookup module. A remote attacker able to send...

7.5CVSS8.7AI score0.5622EPSS
Exploits0References1
OSV
OSV
added 2014/09/11 6:55 p.m.7 views

CVE-2014-3609

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

6.2AI score
Exploits0References14
OSV
OSV
added 2014/09/11 6:55 p.m.1 views

DEBIAN-CVE-2014-3609

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

5CVSS6.8AI score0.5622EPSS
Exploits0References1
Prion
Prion
added 2014/09/11 6:55 p.m.28 views

Design/Logic Flaw

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

5CVSS6.8AI score0.5622EPSS
Exploits0References14Affected Software1
Debian CVE
Debian CVE
added 2014/09/11 6:0 p.m.47 views

CVE-2014-3609

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

5CVSS6.1AI score0.5622EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/09/05 12:0 a.m.42 views

Scientific Linux Security Update : squid on SL5.x, SL6.x i386/x86_64 (20140903)

A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid. CVE-2014-3609 A buffer overflow flaw was found in Squid's DNS lookup module. A remote attacker able to send HTTP requests to...

7.5CVSS7.7AI score0.5622EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/09/04 12:0 a.m.42 views

RHEL 5 / 6 : squid (RHSA-2014:1148)

An updated squid package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

7.5CVSS7.8AI score0.5622EPSS
Exploits0References5
Cent OS
Cent OS
added 2014/09/03 11:9 p.m.64 views

squid security update

CentOS Errata and Security Advisory CESA-2014:1147 Updated squid packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which...

5CVSS7AI score0.5622EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2014/09/03 6:45 p.m.43 views

Important: Red Hat Security Advisory: squid security update

Updated squid packages that fix one security issue are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available from...

5CVSS7AI score0.5622EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2014/09/03 6:45 p.m.6 views

squid: assertion failure in Range header processing (SQUID-2014:2)

A flaw was found in the way Squid handled malformed HTTP Range headers. A remote attacker able to send HTTP requests to the Squid proxy could use this flaw to crash Squid...

5CVSS7.1AI score0.5622EPSS
Exploits0References5
OSV
OSV
added 2014/08/28 12:0 p.m.2 views

UBUNTU-CVE-2014-3609

HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service crash via a request with crafted "Range headers with unidentifiable byte-range values."...

5CVSS7.1AI score0.5622EPSS
Exploits0References4
OSV
OSV
added 2011/08/29 3:55 p.m.15 views

CVE-2011-3192

The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service memory and CPU consumption via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different...

7.8CVSS7.3AI score0.98945EPSS
Exploits17References98
securityvulns
securityvulns
added 2003/04/08 12:0 a.m.70 views

Aprelium Abyss Webserver DoS

Incomplete Connection: and Range: headers cause server to crash...

2.7AI score
Exploits0References1Affected Software1
Rows per page
Query Builder