Lucene search
+L

37 matches found

OSV
OSV
added 2009/12/30 10:30 p.m.9 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

7.6AI score
Exploits0References4
OSV
OSV
added 2009/12/30 10:30 p.m.9 views

CVE-2008-7250

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.4 allows remote attackers to inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: this issue exists...

5.5AI score
Exploits0References3
CVE
CVE
added 2009/12/30 10:0 p.m.53 views

CVE-2008-7249

CVE-2008-7249 : A buffer overflow in Squid Analysis Report Generator (Sarg) 2.2.3.1 (and likely later) allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file. This is a standalone vulnerability distinct from CVE-2008-1167. Affec...

9.3CVSS7.5AI score0.03975EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2009/12/30 10:0 p.m.45 views

CVE-2008-7249

Buffer overflow in Squid Analysis Report Generator Sarg 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167...

9.3CVSS7.4AI score0.03975EPSS
Exploits0
CVE
CVE
added 2009/12/30 10:0 p.m.87 views

CVE-2008-7250

The CVE-2008-7250 entry describes a Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.4. An attacker could inject arbitrary web script or HTML via a JavaScript onload event in the User-Agent header, which is mishandled when displaying the Squid proxy log. The ...

4.3CVSS5.4AI score0.01056EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2008/03/05 11:44 p.m.14 views

Stack overflow

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS8.1AI score0.06681EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2008/03/05 11:44 p.m.5 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

7.8AI score
Exploits0References13
OSV
OSV
added 2008/03/05 11:44 p.m.4 views

DEBIAN-CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

4.3CVSS5.9AI score0.01553EPSS
Exploits0References1
NVD
NVD
added 2008/03/05 11:44 p.m.17 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

10CVSS7.8AI score0.06681EPSS
Exploits0References13
Prion
Prion
added 2008/03/05 11:44 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

4.3CVSS5.7AI score0.01553EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2008/03/05 11:44 p.m.25 views

CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

4.3CVSS6AI score0.01553EPSS
Exploits0References1
OSV
OSV
added 2008/03/05 11:44 p.m.6 views

CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

5.3AI score
Exploits0References9
Cvelist
Cvelist
added 2008/03/05 11:0 p.m.25 views

CVE-2008-1167

Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party information...

7.7AI score0.06681EPSS
Exploits0References13
Cvelist
Cvelist
added 2008/03/05 11:0 p.m.48 views

CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

5.3AI score0.01553EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2008/03/05 11:0 p.m.59 views

CVE-2008-1168

Cross-site scripting XSS vulnerability in Squid Analysis Report Generator Sarg 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown;...

4.3CVSS3.7AI score0.01553EPSS
Exploits0
CVE
CVE
added 2008/03/05 11:0 p.m.54 views

CVE-2008-1168

Cross-site scripting (XSS) in Squid Analysis Report Generator (Sarg) affects multiple 2.2.x releases (notably 2.2.4; earlier 2.2.3.1) via the User-Agent header when rendering the Squid proxy log. Root cause: an improper handling of User-Agent data leads to script/HTML injection. Impact: remote at...

4.3CVSS5.3AI score0.01553EPSS
Exploits0References9Affected Software1
securityvulns
securityvulns
added 2008/03/03 12:0 a.m.39 views

Squid Analysis Report Generator <= 2.2.3.1 buffer overflow

====================================================================== Squid Analysis Report Generator = 2.2.3.1 buffer overflow ====================================================================== Author: L4teral l4teral 4t gmail com Impact: buffer overflow Status: fixed version available...

1.1AI score
Exploits0
Rows per page
Query Builder