National Science Foundation: >> Squid Web Proxy Security Vulnerabilities
squid 2.3 and earlier allows local users to overwrite arbitrary files via a symlink attack in some configurations.
CVSS Score
1.2
EPSS Score
0.001
Published
2001-03-12
Squid 2.2.STABLE5 and below, when using external authentication, allows attackers to bypass access controls via a newline in the user/password pair.
CVSS Score
5.0
EPSS Score
0.064
Published
1999-12-31
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.
CVSS Score
7.5
EPSS Score
0.005
Published
1998-02-20