Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2009-0801

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access...

5.4CVSS7.7AI score0.03089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.34 views

RHEL 5 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: buffer overflow in cachemgr.cgi CVE-2016-4051 - Squid, when transparent interception mode is...

7.5CVSS9.2AI score0.38893EPSS
Exploits2References14
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.5 views

SUSE CVE-2009-0801

Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a...

5.4CVSS7AI score0.03089EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2016/06/03 12:0 a.m.31 views

CentOS Update for squid CESA-2016:1139 centos7

Check the version of squid SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882499";...

8.6CVSS6.3AI score0.77559EPSS
Exploits0References2
Mageia
Mageia
added 2016/05/11 7:27 p.m.50 views

Updated squid packages fix security vulnerability

Due to incorrect data validation of intercepted HTTP Request messages Squid is vulnerable to clients bypassing the protection against CVE-2009-0801 related issues. This leads to cache poisoning. This allows any client, including browser scripts, to bypass local security and poison the proxy cache...

8.6CVSS0.7AI score0.79969EPSS
Exploits0References3
OSV
OSV
added 2009/03/04 4:30 p.m.8 views

CVE-2009-0801

Squid, when transparent interception mode is enabled, uses the HTTP Host header to determine the remote endpoint, which allows remote attackers to bypass access controls for Flash, Java, Silverlight, and probably other technologies, and possibly communicate with restricted intranet sites, via a...

8.4AI score
Exploits0References3
Rows per page
Query Builder