CVE-2005-1232

CVE-2005-1232 pertains to Sun Java System Web Proxy Server (also Sun ONE Proxy Server) 3.6 SP6. The vulnerability is described as a buffer overflow that could allow remote code execution via unknown vectors. The connected Nessus plugin cites an upgrade path to 3.6 SP7 or higher as a remediation. ...

CVE-2005-1232

Buffer overflow in Sun Java System Web Proxy Server aka Sun ONE Proxy Server 3.6 SP6 allows remote attackers to execute arbitrary code via unknown vectors...

Sun Java System Web Proxy Server Unspecified Remote Overflow

The remote host is running the SunOne Web Proxy. This version is reported vulnerable to a number of remote buffer overflows. Alledgedly, successful exploitation would result in the attacker executing arbitrary commands on the remote SunOne Web Proxy server. C Tenable Network Security, Inc. includ...

SunOne Web Proxy < 3.6 SP7 Unspecified Remote Buffer Overflows

Binary data 2845.prm...

Sun Java System Web Proxy Server buffer overflow

No description provided...

SUSE-SA:2005:008: squid

The remote host is missing the patch for the advisory SUSE-SA:2005:008 squid. Squid is an Open Source web proxy. A remote attacker was potentially able to crash the Squid web proxy if the logfqdn option was set to 'on' and the DNS replies were manipulated. This is tracked by the Mitre CVE ID...

Squid fails to parse empty access control lists correctly

Overview The Squid web proxy cache may fail to handle empty Access Control Lists ACLs in the intended manner. Description Squid functions as a web proxy and cache application for a number of protocols. However, Squid Access Control List ACL routines may not parse an empty list as intended. An emp...

HP-UX PHSS_26478 : HPSBUX0203-189 Sec, Vulnerability in VVOS Web proxy (rev.1)

s700800 11.04 HP Praesidium Webproxy 1.0 server update : Security Vulnerability using HP Praesidium Webproxy 1.0. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and patch checks in this plugin were extracted from HP patch PHSS26478. The text itself is copyright C...

Squid fails to properly handle oversized reply headers

Overview The Squid web proxy cache may be vulnerable to oversized HTTP reply headers. Description Squid functions as a web proxy and cache application for a number of protocols, including the hypertext transfer protocol HTTP. A defect in the Squid HTTP handling prevents oversized reply headers...

CVE-2004-0918

The asnparseheader function asn1.c in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service server restart via certain SNMP packets with negative length fields that trigger a memory allocation error...

CVE-2004-0918

The asnparseheader function asn1.c in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service server restart via certain SNMP packets with negative length fields that trigger a memory allocation error...

CVE-2004-0918

The asnparseheader function asn1.c in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service server restart via certain SNMP packets with negative length fields that trigger a memory allocation error...

CVE-2004-1350

Multiple buffer overflows in Sun Java System Web Proxy Server formerly Sun ONE Proxy Server 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests...

CVE-2004-1350

Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6–3.6 SP4 contains multiple buffer overflows that allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests. The issue affects the proxy server’s handling of input in its network-facing compon...

DEBIAN-CVE-2004-2654

The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...

DEBIAN-CVE-2004-2480

Squid Web Proxy Cache 2.3.STABLE5 allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL within Internet Explorer...

CVE-2004-2479

Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages...

CVE-2004-2654

The clientAbortBody function in clientside.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service segmentation fault via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer...

CVE-2004-2479

Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages...

CVE-2004-2480

Squid Web Proxy Cache 2.3.STABLE5 allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL within Internet Explorer...