USN-4446-2 squid3 regression

USN-4446-1 fixed vulnerabilities in Squid. The update introduced a regression when using Squid with the icap or ecap protocols. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Jeriko One discovered that Squid incorrectly handled caching certain...

c-icap: Denial of service

Background c-icap is an implementation of an ICAP server. It can be used with HTTP proxies that support the ICAP protocol to implement content adaptation and filtering services. Description c-icap contains a flaw in the parserequest function of request.c that may allow a remote denial of service...

icap-info NSE Script

Tests a list of known ICAP service names and prints information about any it detects. The Internet Content Adaptation Protocol ICAP is used to extend transparent proxy servers and is generally used for content filtering and antivirus scanning. Example Usage nmap -p 1344 --script icap-info Script...

squid memory exhaustion

Memory exhaustion on data received with ICAP protocol...

CVE-2008-0308

Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to cause a denial of service memory consumption via a malformed RAR file to the Internet Content Adaptation Protocol ICAP port...

CVE-2008-0309

Stack-based buffer overflow in Symantec Decomposer, as used in certain Symantec antivirus products including Symantec Scan Engine 5.1.2 and other versions before 5.1.6.31, allows remote attackers to execute arbitrary code or cause a denial of service application crash via a malformed RAR file to...