541 matches found
GLSA-200501-25 : Squid: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200501-25 Squid: Multiple vulnerabilities Squid contains a vulnerability in the gopherToHTML function CAN-2005-0094 and incorrectly checks the 'number of caches' field when parsing WCCPISEEYOU messages CAN-2005-0095. Furthermore t...
security flaw
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...
CVE-2005-0094
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...
CVE-2005-0094
CVE-2005-0094 affects Squid’s Gopher reply parser (gopherToHTML) and causes a buffer overflow that can allow remote Gopher servers to crash the daemon (DoS) via a crafted response. The original entry specifies Squid 2.5.STABLE7 and earlier as vulnerable. Several connected advisories map this issu...
CVE-2004-0561
Format string vulnerability in the log routine for gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code...
CVE-2004-0561
Format string vulnerability in the log routine for gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code...
CVE-2004-0560
CVE-2004-0560 affects the gopher server (gopherd) and is caused by an integer overflow when posting content of a specially crafted size. The vulnerability can lead to denial of service and may allow arbitrary code execution. Public disclosures and fixes are documented in Debian’s DSA-638-1, which...
CVE-2004-0561
CVE-2004-0561 refers to a format-string vulnerability in the log routine of gopherd (Debian gopher package). Affected software is the gopher server (gopherd) in Debian, with the issue fixed in the 3.0.3woody2 update for Woody; other references note the same vulnerability across Debian advisories....
CVE-2004-0560
Integer overflow in gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow...
CVE-2004-0560
Integer overflow in gopher daemon gopherd 3.0.3 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted content of a certain size that triggers the overflow...
Squid < 2.5.STABLE8 Multiple Vulnerabilities
Binary data 2537.prm...
UMN Gopherd < 3.0.6 Multiple Remote Vulnerabilities
The remote host is running the UMN Gopher server. The remote version of the remote gopher server seems to be vulnerable to various issues including a buffer overflow and format string, which may be exploited by an attacker to execute arbitrary code on the remote host with the privileges of the...
CVE-2005-0094
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...
CVE-2005-0094
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service crash via crafted responses...
[SECURITY] [DSA 638-1] New gopher packages fix several vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 638-1 [email protected] http://www.debian.org/security/ Martin Schulze January 13th, 2005 http://www.debian.org/security/faq -...
squid web cache proxy multiple bugs
WCCPISEEYOU message WCCP Web Cache Communication Protocol DoS, gopher protocol buffer overflow...
[SECURITY] [DSA 638-1] New gopher packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 638-1 [email protected] http://www.debian.org/security/ Martin Schulze January 13th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 638-1] New gopher packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 638-1 [email protected] http://www.debian.org/security/ Martin Schulze January 13th, 2005 http://www.debian.org/security/faq -...
Debian DSA-638-1 : gopher - several vulnerabilities
'jaguar' has discovered two security relevant problems in gopherd, the Gopher server in Debian which is part of the gopher package. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CAN-2004-0560 An integer overflow can happen when posting content of a...
squid -- buffer overflow vulnerability in gopherToHTML
The squid patches page notes: A malicious gopher server may return a response with very long lines that cause a buffer overflow in Squid. Workaround: Since gopher is very obscure these days, do not allow Squid to any gopher servers. Use an ACL rule like: acl Gopher proto gopher httpaccess deny...