19 matches found
Squid < 3.1 5 - HTTP Version Number Parsing Denial of Service Exploit
No description provided by source. !usr/bin/perl -w Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0478 http://www.securityfocus.com/bid/33604/discuss $$$$$This was strictly written for educational purpose. Use it at your own risk.$$$$$ $$$$$Author will not bare any...
openSUSE Security Update : squid (squid-535)
A Denial of service condition in HTTP-request processing was fixed in squid. CVE-2009-0478 has been assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update squid-535. The text...
Ubuntu 8.10 : squid vulnerability (USN-724-1)
Joshua Morin, Mikko Varpiola and Jukka Taimisto discovered that Squid did not properly validate the HTTP version when processing requests. A remote attacker could exploit this to cause a denial of service assertion failure. Note that Tenable Network Security has extracted the preceding descriptio...
Gentoo Security Advisory GLSA 200903-38 (Squid)
The remote host is missing updates announced in advisory GLSA 200903-38. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
GLSA-200903-38 : Squid: Multiple Denial of Service vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200903-38 Squid: Multiple Denial of Service vulnerabilities The arrayShrink function in lib/Array.c can cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an incorrect fix for...
[SECURITY] [DSA 1732-1] New squid3 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1732 [email protected] http://www.debian.org/security/ Steffen Joeris March 03, 2009 http://www.debian.org/security/faq -...
[SECURITY] [DSA 1732-1] New squid3 packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1732 [email protected] http://www.debian.org/security/ Steffen Joeris March 03, 2009 http://www.debian.org/security/faq -...
SuSE Security Summary SUSE-SR:2009:005
The remote host is missing updates announced in advisory SUSE-SR:2009:005. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...
Mandrake Security Advisory MDVSA-2009:034 (squid)
The remote host is missing an update to squid announced via advisory MDVSA-2009:034. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Mandrake Security Advisory MDVSA-2009:034 (squid)
The remote host is missing an update to squid announced via advisory MDVSA-2009:034. OpenVAS Vulnerability Test $Id: mdksa2009034.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:034 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Fedora Core 10 FEDORA-2009-1526 (squid)
The remote host is missing an update to squid announced via advisory FEDORA-2009-1526. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Fedora Core 10 FEDORA-2009-1526 (squid)
The remote host is missing an update to squid announced via advisory FEDORA-2009-1526. OpenVAS Vulnerability Test $Id: fcore20091526.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1526 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
Fedora Core 9 FEDORA-2009-1517 (squid)
The remote host is missing an update to squid announced via advisory FEDORA-2009-1517. OpenVAS Vulnerability Test $Id: fcore20091517.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-1517 squid Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...
Fedora Core 9 FEDORA-2009-1517 (squid)
The remote host is missing an update to squid announced via advisory FEDORA-2009-1517. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Squid < 3.1 5 - HTTP Version Number Parsing Denial of Service
!usr/bin/perl -w Reference: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0478 https://www.securityfocus.com/bid/33604/discuss $$$$$This was strictly written for educational purpose. Use it at your own risk.$$$$$ $$$$$Author will not bare any responsibility for any damages...
CVE-2009-0478
creationtimestamp| type| source ---|---|--- 2009-02-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/8021...
Squid < 3.1 5 HTTP Version Number Parsing Denial of Service Exploit
Exploit for multiple platform in category dos / poc =================================================================== Squid ; chomp$vulnserverip; @maliciousversion="9.9"...
CVE-2009-0478
Squid 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 allows remote attackers to cause a denial of service via an HTTP request with an invalid version number, which triggers a reachable assertion in 1 HttpMsg.c and 2 HttpStatusLine.c...
CVE-2009-0478
CVE-2009-0478 affects Squid versions 2.7 through 3.1.0.4, where an HTTP request with an invalid version number can trigger a denial of service via an assertion in HttpMsg.c or HttpStatusLine.c. Connected advisories confirm vendor patches: e.g., Debian/etch-sid fix squid3 3.0.STABLE8-3; Fedora ope...