6 matches found
EUVD-2019-8393
Malware in sbrugna...
The vulnerability of the `append_domain` parameter in the Squid proxy server, related to the manipulation of inter-domain requests, allows attackers to gain access to confidential data and compromise its integrity.
The vulnerability of the appenddomain parameter in the Squid proxy server is related to deficiencies in mechanisms for combating cross-site fraud. Exploiting this vulnerability allows a malicious actor, operating remotely, to gain access to confidential data and compromise its integrity...
Debian DLA-2028-1 : squid3 security update
It was found that Squid, a high-performance proxy caching server for web clients, has been affected by the following security vulnerabilities. CVE-2019-12526 URN response handling in Squid suffers from a heap-based buffer overflow. When receiving data from a remote server in response to an URN...
CVE-2019-18677
An issue was discovered in Squid 3.x and 4.x through 4.8 when the appenddomain setting is used because the appended characters do not properly interact with hostname length restrictions. Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be...
Code injection
An issue was discovered in Squid 3.x and 4.x through 4.8 when the appenddomain setting is used because the appended characters do not properly interact with hostname length restrictions. Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be...
CVE-2019-18677
An issue was discovered in Squid 3.x and 4.x through 4.8 when the appenddomain setting is used because the appended characters do not properly interact with hostname length restrictions. Due to incorrect message processing, it can inappropriately redirect traffic to origins it should not be...