squid software vulnerabilities
vulnerabilities.aspcode.net
Searching squid software vulnerabilities
Squid Internet Object Cache 1.1.20 allows users
Internet
|
Object
|
Cache
|
Squid
|
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.
Vulnerability in Squid before 2.4.STABLE6 relat
authentication
|
Vulnerability
|
credentials
|
24STABLE6
|
password
|
related
|
remote
|
obtain
|
user's
|
before
|
sites
|
login
|
proxy
|
Squid
|
allow
|
may
|
web
|
Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password.
Format string vulnerability in the logging() fu
vulnerability
|
string
|
Format
|
Format string vulnerability in the logging() function in C-Note Squid LDAP authentication module (squid_auth_LDAP) 2.0.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code by triggering log messages.
Buffer overflows in (1) try_netscape_proxy and
overflows
|
Buffer
|
Buffer overflows in (1) try_netscape_proxy and (2) try_squid_eplf for lftp 2.6.9 and earlier allow remote HTTP servers to execute arbitrary code via long directory names that are processed by the ls or rels commands.
Squid Web Proxy Cache 2.5 might allow remote at
information
|
containing
|
operations
|
previously
|
references
|
sensitive
|
hostnames
|
attackers
|
messages
|
results
|
invalid
|
obtain
|
remote
|
error
|
Proxy
|
Squid
|
which
|
Cache
|
might
|
allow
|
cause
|
used
|
fail
|
URLs
|
via
|
DNS
|
Web
|
Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.
Squid Web Proxy Cache 2.3.STABLE5 allows remote
23STABLE5
|
arbitrary
|
attackers
|
sequences
|
Explorer
|
security
|
controls
|
websites
|
Internet
|
allows
|
within
|
access
|
bypass
|
remote
|
Proxy
|
Cache
|
Squid
|
"@@"
|
Web
|
via
|
URL
|
Squid Web Proxy Cache 2.3.STABLE5 allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL within Internet Explorer.
Buffer overflow in the gopherToHTML function in
gopherToHTML
|
25STABLE7
|
malicious
|
overflow
|
function
|
earlier
|
service
|
servers
|
Buffer
|
denial
|
Gopher
|
remote
|
parser
|
allows
|
Squid
|
reply
|
cause
|
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.
The WCCP message parsing code in Squid 2.5.STAB
25STABLE7
|
attackers
|
service
|
earlier
|
parsing
|
message
|
remote
|
denial
|
allows
|
Squid
|
cause
|
WCCP
|
code
|
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.
Memory leak in the NTLM fakeauth_auth helper fo
fakeauth_auth
|
25STABLE7
|
attackers
|
earlier
|
service
|
remote
|
denial
|
Memory
|
allows
|
helper
|
cause
|
Squid
|
NTLM
|
leak
|
Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (memory consumption).
The NTLM component in Squid 2.5.STABLE7 and ear
attackers
|
25STABLE7
|
component
|
earlier
|
service
|
denial
|
remote
|
allows
|
Squid
|
cause
|
NTLM
|
The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.
Squid 2.5 up to 2.5.STABLE7 allows remote attac
splitting
|
attackers
|
25STABLE7
|
response
|
attack
|
poison
|
allows
|
remote
|
cache
|
Squid
|
HTTP
|
via
|
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache via an HTTP response splitting attack.
Race condition in Squid 2.5.STABLE7 to 2.5.STAB
recommendations
|
Set-Cookie
|
25STABLE9
|
25STABLE7
|
condition
|
attackers
|
Netscape
|
handling
|
cookies
|
related
|
headers
|
allows
|
caches
|
using
|
which
|
Squid
|
steal
|
users
|
cause
|
other
|
Race
|
sent
|
may
|
Race condition in Squid 2.5.STABLE7 to 2.5.STABLE9, when using the Netscape Set-Cookie recommendations for handling cookies in caches, may cause Set-Cookie headers to be sent to other users, which allows attackers to steal the related cookies.
Squid 2.5.STABLE7 and earlier allows remote att
25STABLE7
|
attackers
|
earlier
|
service
|
denial
|
allows
|
remote
|
Squid
|
cause
|
Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory.
Buffer overflow in Initial Redirect (ir) Squid
Redirect
|
overflow
|
Initial
|
Buffer
|
Buffer overflow in Initial Redirect (ir) Squid Proxy Plug-In 0.1 and 0.2 may allow attackers to cause a denial of service and execute arbitrary code via unknown vectors.
Squid 2.5.STABLE9 and earlier does not trigger
configuration
|
administrator
|
http_access
|
restrictive
|
identifies
|
25STABLE9
|
intended
|
missing
|
invalid
|
trigger
|
earlier
|
which
|
Squid
|
could
|
fatal
|
error
|
does
|
than
|
ACLs
|
lead
|
less
|
not
|
Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator.
Squid 2.5 STABLE9 and earlier, when the DNS cli
environment
|
unfiltered
|
attackers
|
spoofing
|
STABLE9
|
prevent
|
lookups
|
earlier
|
allows
|
remote
|
client
|
spoof
|
Squid
|
port
|
does
|
DNS
|
not
|
Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups.
Gibraltar Firewall 2.2 and earlier, when using
Gibraltar
|
Firewall
|
earlier
|
update
|
ClamAV
|
using
|
Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected.
The sslConnectTimeout function in ssl.c for Squ
sslConnectTimeout
|
25STABLE10
|
attackers
|
function
|
service
|
earlier
|
denial
|
remote
|
allows
|
cause
|
Squid
|
sslc
|
The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (segmentation fault) via certain crafted requests.
Unspecified vulnerability in Squid on SUSE Linu
vulnerability
|
Unspecified
|
attackers
|
service
|
remote
|
denial
|
allows
|
Squid
|
cause
|
Linux
|
SUSE
|
Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (SSL).
squid/src/ftp.c in Squid before 2.6.STABLE7 all
squid/src/ftpc
|
26STABLE7
|
servers
|
service
|
denial
|
remote
|
before
|
allows
|
Squid
|
cause
|
FTP
|
squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.
Software vulnerabilities results 1 to 20 of 37
Page:
1
2
►