169 matches found
CVE-2005-0095
CVE-2005-0095 affects Squid 2.5.STABLE7 and earlier. The vulnerability arises in the Web Cache Communication Protocol (WCCP) message parsing: an attacker can send a malformed WCCP I_SEE_YOU message with a spoofed source address pointing to Squid’s home router and an invalid WCCP_I_SEE_YOU cache n...
CVE-2005-0095
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service crash via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCPISEEYOU cache numbers...
Squid < 2.5.STABLE8 Multiple Vulnerabilities
Binary data 2537.prm...
CVE-2005-0095
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service crash via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCPISEEYOU cache numbers...
CVE-2005-0095
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service crash via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCPISEEYOU cache numbers...
DEBIAN-CVE-2005-0095
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service crash via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCPISEEYOU cache numbers...
squid web cache proxy multiple bugs
WCCPISEEYOU message WCCP Web Cache Communication Protocol DoS, gopher protocol buffer overflow...
squid -- denial of service with forged WCCP messages
The squid patches page notes: WCCPISEEYOU messages contain a 'number of caches' field which should be between 1 and 32. Values outside that range may crash Squid if WCCP is enabled, and if an attacker can spoof UDP packets with the WCCP router's IP address...
CVE-1999-1175
The CVE-1999-1175 entry concerns Cisco’s Web Cache Control Protocol (WCCP) in Cisco Cache Engine on Cisco IOS 11.2 and earlier. The root cause is that WCCP does not use authentication, allowing a remote attacker to divert HTTP traffic to arbitrary hosts by sending valid WCCP packets to UDP port 2...