Lucene search
K

22 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.3 views

SUSE CVE-2014-6270

Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...

6.8CVSS9.6AI score0.23317EPSS
Exploits0References7
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2014-0396)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.2AI score0.76064EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:1996-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79969EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.30 views

SUSE: Security Advisory (SUSE-SU-2015:1983-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.7AI score0.23317EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2015:0028-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS8.2AI score0.23317EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/07/11 12:0 a.m.33 views

GLSA-201607-01 : Squid: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201607-01 Squid: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Squid. Please review the CVE identifiers referenced below for details. Impact : An attacker can possibly execute arbitrary code or create a...

8.8CVSS7.1AI score0.79969EPSS
Exploits1References16
OpenVAS
OpenVAS
added 2016/03/08 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-2921-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.23317EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/03/08 12:0 a.m.49 views

Ubuntu 14.04 LTS : Squid vulnerabilities (USN-2921-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2921-1 advisory. Sebastian Krahmer discovered that Squid incorrectly handled certain SNMP requests. If SNMP is enabled, a remote attacker could use this issue to cause...

7.5CVSS8AI score0.23317EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2016/03/07 12:56 p.m.65 views

USN-2921-1: Squid vulnerabilities

Sebastian Krahmer discovered that Squid incorrectly handled certain SNMP requests. If SNMP is enabled, a remote attacker could use this issue to cause Squid to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2014-6270 Alex Rousskov discovered that Squid incorrectl...

7.5CVSS7.5AI score0.23317EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/11/16 12:0 a.m.30 views

SUSE SLES11 Security Update : squid (SUSE-SU-2015:1983-1)

squid was updated to fix two security issues. These security issues were fixed : - CVE-2014-6270: Fixed an off by one in snmp subsystem bsc895773. - CVE-2014-9749: Fixed a nonce replay vulnerability in Digest authentication bsc949942. Note that Tenable Network Security has extracted the preceding...

6.8CVSS7.4AI score0.23317EPSS
Exploits0References7
OSV
OSV
added 2015/11/13 9:6 a.m.10 views

SUSE-SU-2015:1983-1 Security update for squid

squid was updated to fix two security issues. These security issues were fixed: - CVE-2014-6270: Fixed an off by one in snmp subsystem bsc895773. - CVE-2014-9749: Fixed a nonce replay vulnerability in Digest authentication bsc949942...

6.8CVSS7.8AI score0.23317EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.25 views

SUSE SLES12 Security Update : squid (SUSE-SU-2015:0028-1)

This squid updated fixes the following security update. - bnc895773: fix off-by-one in snmp subsystem CVE-2014-6270 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it...

6.8CVSS7.5AI score0.23317EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.34 views

Mandriva Linux Security Advisory : squid (MDVSA-2015:103)

Updated squid packages fix security vulnerabilities : Due to incorrect state management, Squid before 3.3.12 is vulnerable to a denial of service attack when processing certain HTTPS requests if the SSL-Bump feature is enabled CVE-2014-0128. Matthew Daley discovered that Squid 3 did not properly...

6.8CVSS7.8AI score0.76064EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.35 views

Fedora Update for squid FEDORA-2014-10790

Check the version of squid SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868398";...

6.8CVSS7.9AI score0.5622EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/10/15 12:0 a.m.47 views

Fedora Update for squid FEDORA-2014-10794

Check the version of squid SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868397";...

7.5CVSS8AI score0.80451EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/10/14 12:0 a.m.37 views

Fedora 19 : squid-3.3.13-2.fc19 (2014-10794)

This updated fixes CVE-2014-6270. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...

6.8CVSS7.6AI score0.23317EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/10/14 12:0 a.m.31 views

Fedora 21 : squid-3.4.7-2.fc21 (2014-10767)

This updated fixes CVE-2014-6270. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 ...

6.8CVSS7.6AI score0.23317EPSS
Exploits0References3
Mageia
Mageia
added 2014/10/07 9:22 a.m.45 views

Updated squid packages fix security vulnerabilities

Updated squid packages fix security vulnerabilities: Due to incorrect buffer management Squid can be caused by an attacker to write outside its allocated SNMP buffer CVE-2014-6270. Due to incorrect bounds checking Squid pinger binary is vulnerable to denial of service or information leak attack...

6.8CVSS7.8AI score0.76064EPSS
Exploits0References3
OSV
OSV
added 2014/09/12 2:55 p.m.9 views

CVE-2014-6270

Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...

9AI score
Exploits0References14
Cvelist
Cvelist
added 2014/09/12 2:0 p.m.28 views

CVE-2014-6270

Off-by-one error in the snmpHandleUdp function in snmpcore.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow...

8.5AI score0.23317EPSS
Exploits0References11
Rows per page
Query Builder