Lucene search
SuseSUSE-SA:2004:016HistoryJun 09, 2004 - 2:47 p.m.
remote system compromise in squid
2004-06-0914:47:16
lists.opensuse.org
25
0.967 High
EPSS
Percentile
99.5%
Squid is a feature-rich web-proxy with support for various web-related protocols. The NTLM authentication helper application of Squid is vulnerable to a buffer overflow that can be exploited remotely by using a long password to execute arbitrary code. NTLM authentication is enabled by default in the Squid package that is shipped by SUSE LINUX.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 9.0 | x86_64 | squid | < 2.5.STABLE3-110 | squid-2.5.STABLE3-110.x86_64.rpm |
| openSUSE | 9.0 | i586 | squid | < 2.5.STABLE3-110 | squid-2.5.STABLE3-110.i586.rpm |
| openSUSE | 8.0 | i386 | squid | < 2.4.STABLE6-9 | squid-2.4.STABLE6-9.i386.rpm |
| openSUSE | 9.1 | i586 | squid | < 2.5.STABLE5-42.9 | squid-2.5.STABLE5-42.9.i586.rpm |
| openSUSE | 9.1 | x86_64 | squid | < 2.5.STABLE5-42.9 | squid-2.5.STABLE5-42.9.x86_64.rpm |
| openSUSE | 8.2 | i586 | squid | < 2.5.STABLE1-98 | squid-2.5.STABLE1-98.i586.rpm |
Related
nessus
nessus
Mandrake Linux Security Advisory : OpenOffice.org (MDKSA-2004:078)
2004-07-31 00:00:00
GLSA-200405-15 : cadaver heap-based buffer overflow
2004-08-30 00:00:00
Debian DSA-507-1 : cadaver - buffer overflow
2004-09-29 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200406-03 (sitecopy)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200405-25 (tla)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200405-13 (neon)
2008-09-24 00:00:00
securityvulns
securityvulns
SUSE Security Announcement: kernel (SuSE-SA:2004:017)
2004-06-18 00:00:00
Advisory 06/2004: libneon date parsing vulnerability
2004-05-19 00:00:00
suse
suse
remote system compromise in subversion
2004-06-17 09:42:39
local denial-of-service attack in kernel
2004-06-16 14:13:55
remote root compromise in samba
2004-07-23 11:20:42
debiancve
debiancve
CVE-2004-0398
2004-07-07 04:00:00
CVE-2004-0541
2004-08-06 04:00:00
ubuntucve
ubuntucve
osv
osv
neon - buffer overflow
2004-05-19 00:00:00
neon - format string
2004-04-16 00:00:00
redhat
redhat
(RHSA-2004:191) cadaver security update
2004-05-19 00:00:00
(RHSA-2004:242) squid security update
2004-06-09 00:00:00
(RHSA-2004:157) cadaver security update
2004-04-14 00:00:00
gentoo
gentoo
cadaver heap-based buffer overflow
2004-05-20 00:00:00
neon heap-based buffer overflow
2004-05-20 00:00:00
Squid: NTLM authentication helper buffer overflow
2004-06-17 00:00:00
cve
cve
freebsd
freebsd
neon date parsing vulnerability
2004-05-19 00:00:00
Buffer overflow in Squid NTLM authentication helper
2004-05-20 00:00:00
neon format string vulnerabilities
2004-04-14 00:00:00
debian
debian
[SECURITY] [DSA 506-1] New neon packages fix buffer overflow
2004-05-19 09:21:53
[SECURITY] [DSA 507-1] New cadaver packages fix buffer overflow
2004-05-19 11:36:47
[SECURITY] [DSA 487-1] New neon packages fix format string vulnerabilities
2004-04-17 01:44:24
packetstorm
packetstorm
Squid NTLM Authenticate Overflow
2009-10-27 00:00:00
cert
cert