Show filters
10 Total Results
Displaying 1-10 of 10
Sort by:
Attacker Value
Unknown
CVE-2005-3258
Disclosure Date: October 20, 2005 (last updated February 22, 2025)
The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses.
0
Attacker Value
Unknown
CVE-2005-2796
Disclosure Date: September 07, 2005 (last updated February 22, 2025)
The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (segmentation fault) via certain crafted requests.
0
Attacker Value
Unknown
CVE-2005-0446
Disclosure Date: May 02, 2005 (last updated February 22, 2025)
Squid 2.5.STABLE8 and earlier allows remote attackers to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.
0
Attacker Value
Unknown
CVE-2005-0718
Disclosure Date: April 14, 2005 (last updated February 22, 2025)
Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (segmentation fault) by aborting the connection during a (1) PUT or (2) POST request, which causes Squid to access previously freed memory.
0
Attacker Value
Unknown
CVE-2005-0175
Disclosure Date: February 07, 2005 (last updated February 22, 2025)
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache via an HTTP response splitting attack.
0
Attacker Value
Unknown
CVE-2005-0174
Disclosure Date: February 07, 2005 (last updated February 22, 2025)
Squid 2.5 up to 2.5.STABLE7 allows remote attackers to poison the cache or conduct certain attacks via headers that do not follow the HTTP specification, including (1) multiple Content-Length headers, (2) carriage return (CR) characters that are not part of a CRLF pair, and (3) header names containing whitespace characters.
0
Attacker Value
Unknown
CVE-2005-0096
Disclosure Date: January 25, 2005 (last updated February 22, 2025)
Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (memory consumption).
0
Attacker Value
Unknown
CVE-2005-0095
Disclosure Date: January 15, 2005 (last updated February 22, 2025)
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.
0
Attacker Value
Unknown
CVE-2005-0094
Disclosure Date: January 15, 2005 (last updated February 22, 2025)
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.
0
Attacker Value
Unknown
CVE-2005-0097
Disclosure Date: January 11, 2005 (last updated February 22, 2025)
The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.
0