Shodan
Vulnerabilities
Vulnerable Software
Squid:  >> Squid  >> 2.6.stable1  Security Vulnerabilities
CVE-2007-1560
The clientProcessRequest() function in src/client_side.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service (daemon crash) via crafted TRACE requests that trigger an assertion error.
CVSS Score
5.0
EPSS Score
0.64
Published
2007-03-21
CVE-2007-0247
squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.
CVSS Score
5.0
EPSS Score
0.386
Published
2007-01-16
CVE-2005-3322
Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (SSL).
CVSS Score
5.0
EPSS Score
0.007
Published
2005-10-27
CVE-2005-1711
Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected.
CVSS Score
7.5
EPSS Score
0.0
Published
2005-05-24
CVE-2005-0096
Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (memory consumption).
CVSS Score
5.0
EPSS Score
0.023
Published
2005-01-25
CVE-2005-0094
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.
CVSS Score
5.0
EPSS Score
0.461
Published
2005-01-15
CVE-2005-0095
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.
CVSS Score
5.0
EPSS Score
0.758
Published
2005-01-15
CVE-2005-0097
The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.
CVSS Score
5.0
EPSS Score
0.483
Published
2005-01-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved