Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 7 : squid-3.5.20-15.el7 (AXSA:2020-4563:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4563:01 advisory. squid: Incorrect pointer handling when processing ESI Responses can lead to denial of service CVE-2018-1000024 squid: Incorrect pointer handling in...

7.5CVSS5.6AI score0.74477EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:3 a.m.3 views

SUSE CVE-2016-4051

Buffer overflow in cachemgr.cgi in Squid 2.x, 3.x before 3.5.17, and 4.x before 4.0.9 might allow remote attackers to cause a denial of service or execute arbitrary code by seeding manager reports with crafted data...

8.8CVSS8.7AI score0.16893EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2020/03/20 9:15 p.m.28 views

CVE-2019-18860

Squid before 4.9, when certain web browsers are used, mishandles HTML in the host aka hostname parameter to cachemgr.cgi...

6.1CVSS6.7AI score0.055EPSS
Exploits0References2
OSV
OSV
added 2019/07/15 2:38 p.m.9 views

USN-4059-1 squid, squid3 vulnerabilities

It was discovered that Squid incorrectly handled certain SNMP packets. A remote attacker could possibly use this issue to cause memory consumption, leading to a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2018-19132 It was discovered that Squid incorrect...

6.1CVSS6.6AI score0.74477EPSS
Exploits1References3
Veracode
Veracode
added 2019/01/15 9:12 a.m.33 views

Remote Code Execution (RCE)

squid is vulnerable to remote code execution. It was found that the fix for CVE-2016-4051 released via RHSA-2016:1138 did not properly prevent the stack overflow in the mungeotherline function. A remote attacker could send specially crafted data to the Squid proxy, which would exploit the cachemg...

9.8CVSS9.2AI score0.16893EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/02/10 12:0 a.m.41 views

Fedora 17 : squid-3.2.5-2.fc17 (2013-1625)

This is security update that fixes multiple memory leaks in cachemgr tool. CVE-2013-0189 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

5CVSS7.6AI score0.23026EPSS
Exploits1References4
OSV
OSV
added 2012/12/20 12:2 p.m.3 views

DEBIAN-CVE-2012-5643

Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service memory consumption via 1 invalid Content-Length headers, 2 long POST requests, or 3 crafted authenticatio...

5CVSS8AI score0.23005EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.31 views

Mandriva Linux Security Advisory : squid (MDVSA-2011:193)

A vulnerability has been discovered and corrected in squid : The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause a denial of service daemon abort via a DNS reply containing a CNAME record that references another CNAME record that...

5CVSS7.6AI score0.37186EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2010/02/07 12:0 a.m.22 views

Mandriva Linux Security Advisory : squid (MDVSA-2010:033)

A vulnerability have been discovered and corrected in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15, which allows remote attackers to cause a denial of service assertion failure via a crafted DNS packet that only contains a header CVE-2010-0308. This update provides a fix to this...

4CVSS7.1AI score0.22858EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.20 views

Mandriva Linux Security Advisory : squid (MDVSA-2008:002)

The cache update reply processing functionality in Squid 2.x before 2.6.STABLE17, and Squid 3.0, allows remote attackers to cause a denial of service crash via unknown vectors related to HTTP headers. The updated package fixes this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

5CVSS5.4AI score0.26858EPSS
Exploits2References1
Rows per page
Query Builder