Lucene search
K

34 matches found

Tenable Nessus
Tenable Nessus
added 2006/06/08 12:0 a.m.36 views

GLSA-200606-05 : Pound: HTTP request smuggling

The remote host is affected by the vulnerability described in GLSA-200606-05 Pound: HTTP request smuggling Pound fails to handle HTTP requests with conflicting 'Content-Length' and 'Transfer-Encoding' headers correctly. Impact : An attacker could exploit this vulnerability by sending HTTP request...

4.3CVSS8.3AI score0.01472EPSS
Exploits0References2
Cvelist
Cvelist
added 2006/02/24 11:0 a.m.33 views

CVE-2004-2654

The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...

7AI score0.01993EPSS
Exploits0References7
CVE
CVE
added 2006/02/24 11:0 a.m.63 views

CVE-2004-2654

Squid Web Proxy Cache is affected by CVE-2004-2654. The vulnerability resides in clientAbortBody() in client_side.c and can trigger a null-dereference, allowing remote denial of service. Affected version line: before 2.6 STABLE6. The issue is not the buffer overflow claim; vendor reports indicate...

5CVSS7.1AI score0.01993EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2005/08/21 4:0 a.m.55 views

CVE-2004-2480

CVE-2004-2480 affects Squid Web Proxy Cache 2.3.STABLE5. The vulnerability allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL processed by Internet Explorer. The provided materials do not specify root cause details, affected versions beyo...

5CVSS6.9AI score0.03028EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2005/08/21 4:0 a.m.78 views

CVE-2004-2479

The CVE-2004-2479 issue affects Squid Web Proxy Cache (2.5 era) where a remote attacker can cause DNS operations to fail by submitting URLs with invalid hostnames, leading Squid to reference previously used error messages. Connected advisories confirm this vulnerability and describe updates to Sq...

5CVSS5.9AI score0.02081EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2004/12/31 5:0 a.m.24 views

CVE-2004-2654

The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...

5CVSS7.1AI score0.01993EPSS
Exploits0References7
OSV
OSV
added 2004/12/31 5:0 a.m.7 views

CVE-2004-2654

The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...

7.3AI score
Exploits0References8
CVE
CVE
added 2004/10/21 4:0 a.m.82 views

CVE-2004-0918

CVE-2004-0918: Squid’s SNMP parser (asn_parse_header in asn1.c) before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) by sending SNMP packets with negative length fields that trigger a memory allocation error. The issue yields a partial availability impact and i...

5CVSS6.2AI score0.1603EPSS
Exploits0References17Affected Software2
Debian CVE
Debian CVE
added 2004/10/21 4:0 a.m.25 views

CVE-2004-0918

The asnparseheader function asn1.c in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service server restart via certain SNMP packets with negative length fields that trigger a memory allocation error...

5CVSS6.3AI score0.1603EPSS
Exploits0
securityvulns
securityvulns
added 2004/10/12 12:0 a.m.42 views

[Full-Disclosure] iDEFENSE Security Advisory 10.11.04: Squid Web Proxy Cache Remote Denial of Service Vulnerability

Squid Web Proxy Cache Remote Denial of Service Vulnerability iDEFENSE Security Advisory 10.11.04: www.idefense.com/application/poi/display?id=152&type=vulnerabilities October 11, 2004 I. BACKGROUND Squid Web Proxy Cache is a full-featured web proxy cache designed to run on Unix systems. It suppor...

5CVSS0.3AI score0.1603EPSS
Exploits0
securityvulns
securityvulns
added 2004/09/03 12:0 a.m.34 views

[ GLSA 200409-04 ] Squid: Denial of service when using NTLM authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200409-04 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - http://security.gentoo.org/ - - - - - - - - - - - - - - -...

0.5AI score
Exploits0
UbuntuCve
UbuntuCve
added 2004/08/06 4:0 a.m.35 views

CVE-2004-0541

Buffer overflow in the ntlmcheckauth NTLM authentication function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password "pass" variable...

10CVSS6.4AI score0.7107EPSS
Exploits6References1
CVE
CVE
added 2004/06/10 4:0 a.m.100 views

CVE-2004-0541

CVE-2004-0541 affects Squid Web Proxy Cache (2.5.x and 3.x when built with NTLM handlers). The issue is a buffer overflow in the NTLM authenticate path, specifically in ntlm_check_auth, where a long password can overflow the local buffer and enable remote code execution. Public references show ex...

10CVSS7.7AI score0.7107EPSS
Exploits6References11Affected Software1
securityvulns
securityvulns
added 2004/06/09 12:0 a.m.525 views

[Full-Disclosure] iDEFENSE Security Advisory 06.08.04: Squid Web Proxy Cache NTLM Authentication Helper Buffer Overflow Vulnerability

Squid Web Proxy Cache NTLM Authentication Helper Buffer Overflow Vulnerability iDEFENSE Security Advisory 06.08.04 www.idefense.com/application/poi/display?id=107&type=vulnerabilities June 8, 2004 I. BACKGROUND Squid is a fully-featured Web Proxy Cache designed to run on Unix systems and supports...

10CVSS0.3AI score0.7107EPSS
Exploits6
Rows per page
Query Builder