Lucene search
UbuntuUSN-904-1HistoryFeb 24, 2010 - 12:00 a.m.
Squid vulnerability
2010-02-2400:00:00
ubuntu.com
40
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
Low
EPSS
0.943
Percentile
99.2%
Releases
- Ubuntu 9.10
- Ubuntu 9.04
- Ubuntu 8.10
- Ubuntu 8.04
Packages
- squid -
Details
It was discovered that Squid incorrectly handled certain malformed packets
received on the HTCP port. A remote attacker could exploit this with a
specially-crafted packet and cause Squid to crash, resulting in a denial of
service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | squid | <Β 2.7.STABLE6-2ubuntu2.2 | UNKNOWN |
| Ubuntu | 9.10 | noarch | squid-cgi | <Β 2.7.STABLE6-2ubuntu2.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | squid | <Β 2.7.STABLE3-4.1ubuntu1.2 | UNKNOWN |
| Ubuntu | 9.04 | noarch | squid-cgi | <Β 2.7.STABLE3-4.1ubuntu1.2 | UNKNOWN |
| Ubuntu | 8.10 | noarch | squid | <Β 2.7.STABLE3-1ubuntu2.3 | UNKNOWN |
| Ubuntu | 8.10 | noarch | squid-cgi | <Β 2.7.STABLE3-1ubuntu2.3 | UNKNOWN |
| Ubuntu | 8.04 | noarch | squid | <Β 2.6.18-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 8.04 | noarch | squid-cgi | <Β 2.6.18-1ubuntu3.2 | UNKNOWN |
| Ubuntu | 8.04 | noarch | squidclient | <Β 2.6.18-1ubuntu3.2 | UNKNOWN |
References
Related
openvas
openvas
FreeBSD Ports: squid
2010-02-18 00:00:00
Fedora Update for squid FEDORA-2010-14236
2010-09-22 00:00:00
freebsd
freebsd
squid -- Denial of Service vulnerability in HTCP
2010-02-12 00:00:00
cvelist
cvelist
CVE-2010-0639
2010-02-15 18:00:00
nessus
nessus
openSUSE Security Update : squid (openSUSE-SU-2012:0102-1)
2014-06-13 00:00:00
Fedora 12 : squid-3.1.0.16-6.fc12 (2010-3064)
2010-07-01 00:00:00
Squid < 3.0.STABLE24 / 2.7.STABLE8 / 2.6.STABLE24
2010-04-21 00:00:00
cve
cve
CVE-2010-0639
2010-02-15 18:30:00
fedora
fedora
[SECURITY] Fedora 12 Update: squid-3.1.8-1.fc12
2010-09-15 22:34:52
[SECURITY] Fedora 12 Update: squid-3.1.0.16-6.fc12
2010-02-27 03:42:08
seebug
seebug
Squid Web代ηηΌεHTCPθ―·ζ±θΏη¨ζη»ζε‘ζΌζ΄
2010-02-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid Proxy HTCP Packet Processing Denial of Service (CVE-2010-0639)
2010-05-12 00:00:00
debiancve
debiancve
CVE-2010-0639
2010-02-15 18:30:00
securityvulns
securityvulns
squid proxy server DoS
2010-02-25 00:00:00
prion
prion
Null pointer dereference
2010-02-15 18:30:00
ubuntucve
ubuntucve
CVE-2010-0639
2010-02-15 00:00:00
nvd
nvd
CVE-2010-0639
2010-02-15 18:30:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2011-10-26 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.4
Confidence
Low
EPSS
0.943
Percentile
99.2%
Related for USN-904-1