Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.19 views

Oracle Linux 5 : squid (ELSA-2010-0221)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2010-0221 advisory. - Resolves: 561828 - CVE-2009-2855 CVE-2010-0308 squid various flaws rhel-5.5 Tenable has extracted the preceding description block directly from the...

5CVSS7.4AI score0.36732EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.26 views

Oracle: Security Advisory (ELSA-2010-0221)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.6AI score0.36732EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.31 views

Scientific Linux Security Update : squid on SL5.x i386/x86_64

A flaw was found in the way Squid processed certain external ACL helper HTTP header fields that contained a delimiter that was not a comma. A remote attacker could issue a crafted request to the Squid server, causing excessive CPU use up to 100%. CVE-2009-2855 Note: The CVE-2009-2855 issue only...

5CVSS7AI score0.36732EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2010/05/11 12:0 a.m.31 views

RHEL 5 : squid (RHSA-2010:0221)

An updated squid package that fixes two security issues and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

5CVSS7.1AI score0.36732EPSS
Exploits1References5
Check Point Advisories
Check Point Advisories
added 2010/05/09 12:0 a.m.14 views

Squid strListGetItem Denial of Service (CVE-2009-2855)

A denial of service vulnerability exists in the way Squid handles HTTP headers. The vulnerability is due to an infinite loop error when processing HTTP headers containing a specific delimiter character. Remote unauthenticated attackers can exploit this vulnerability by sending specially crafted...

5CVSS6.3AI score0.36732EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/04/06 12:0 a.m.32 views

RedHat Update for squid RHSA-2010:0221-04

Check for the Version of squid OpenVAS Vulnerability Test RedHat Update for squid RHSA-2010:0221-04 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

5CVSS6.5AI score0.36732EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2010/03/23 12:0 a.m.28 views

openSUSE Security Update : squid (squid-2144)

The following vulnerabilities have been fixed in squid : - CVE-2009-2855: DoS via special crafted auth header - CVE-2010-0308: DoS via invalid DoS header - CVE-2009-2622: DoS in squid3 via broken HTTP handling - CVE-2009-2621: DoS in squid3 via not enforced 'buffer limits and related bound checks...

5CVSS7.2AI score0.56908EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2010/03/23 12:0 a.m.28 views

SuSE9 Security Update : squid (YOU Patch Number 12597)

The following vulnerabilities have been fixed in squid : - DoS via special crafted auth header. CVE-2009-2855 - DoS via invalid DoS header. CVE-2010-0308 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

5CVSS7.8AI score0.36732EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/03/23 12:0 a.m.33 views

openSUSE Security Update : squid (squid-2144)

The following vulnerabilities have been fixed in squid : - CVE-2009-2855: DoS via special crafted auth header - CVE-2010-0308: DoS via invalid DoS header - CVE-2009-2622: DoS in squid3 via broken HTTP handling - CVE-2009-2621: DoS in squid3 via not enforced 'buffer limits and related bound checks...

5CVSS7.2AI score0.56908EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.33 views

Debian DSA-1991-1 : squid/squid3 - denial of service

Two denial of service vulnerabilities have been discovered in squid and squid3, a web proxy. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-2855 Bastian Blank discovered that it is possible to cause a denial of service via a crafted auth header wit...

5CVSS7.1AI score0.36732EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2010/02/19 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-901-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.36732EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2010/02/17 12:0 a.m.23 views

Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : squid vulnerabilities (USN-901-1)

It was discovered that Squid incorrectly handled certain auth headers. A remote attacker could exploit this with a specially crafted auth header and cause Squid to go into an infinite loop, resulting in a denial of service. This issue only affected Ubuntu 8.10, 9.04 and 9.10. CVE-2009-2855 It was...

5CVSS7.2AI score0.36732EPSS
Exploits1References3
Ubuntu
Ubuntu
added 2010/02/16 2:30 p.m.45 views

USN-901-1: Squid vulnerabilities

It was discovered that Squid incorrectly handled certain auth headers. A remote attacker could exploit this with a specially-crafted auth header and cause Squid to go into an infinite loop, resulting in a denial of service. This issue only affected Ubuntu 8.10, 9.04 and 9.10. CVE-2009-2855 It was...

5CVSS7.2AI score0.36732EPSS
Exploits1
OpenVAS
OpenVAS
added 2010/02/10 12:0 a.m.27 views

Debian: Security Advisory (DSA-1991-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.4AI score0.36732EPSS
Exploits1References3
Debian
Debian
added 2010/02/04 8:46 a.m.29 views

[SECURITY] [DSA 1991-1] New squid/squid3 packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1991-1 [email protected] http://www.debian.org/security/ Steffen Joeris February 04, 2010 http://www.debian.org/security/faq -...

5CVSS6.8AI score0.36732EPSS
Exploits1
securityvulns
securityvulns
added 2010/02/04 12:0 a.m.76 views

[SECURITY] [DSA 1991-1] New squid/squid3 packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1991-1 [email protected] http://www.debian.org/security/ Steffen Joeris February 04, 2010 http://www.debian.org/security/faq -...

5CVSS0.4AI score0.36732EPSS
Exploits1
OSV
OSV
added 2010/02/04 12:0 a.m.25 views

DSA-1991-1 squid squid3 - denial of service

Bulletin has no description...

5CVSS7.4AI score0.36732EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2009/11/16 12:0 a.m.68 views

IBM Tivoli Storage Manager Client Multiple Vulnerabilities (swg21405562)

The remote host is running an IBM Tivoli Storage Manager TSM client. The version running on the remote host has one or more of the following vulnerabilities : - A remote stack-based buffer overflow in the client acceptor daemon CAD scheduler could lead to the execution of arbitrary code...

10CVSS6.4AI score0.36732EPSS
Exploits9References3
NVD
NVD
added 2009/08/18 9:0 p.m.19 views

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

5CVSS6.2AI score0.36732EPSS
Exploits1References12
OSV
OSV
added 2009/08/18 9:0 p.m.7 views

CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function...

6.2AI score
Exploits0References12
Rows per page
Query Builder