CVSS: 7.5EPSS: 38%CPEs: 6EXPL: 1CVE-2007-0247 – Squid Proxy 2.5/2.6 - FTP URI Remote Denial of Service
https://notcve.org/view.php?id=CVE-2007-0247
16 Jan 2007 — squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions. El archivo squid/src/ftp.c en Squid versiones anteriores a 2.6.STABLE7, permite a los servidores FTP remotos causar una denegación de servicio (volcado del núcleo) por medio de respuestas de enumeración de directorio FTP, posiblemente relacionadas con las funciones (1) ft... • https://www.exploit-db.com/exploits/29473 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 46%CPEs: 1EXPL: 0CVE-2007-0248
https://notcve.org/view.php?id=CVE-2007-0248
16 Jan 2007 — The aclMatchExternal function in Squid before 2.6.STABLE7 allows remote attackers to cause a denial of service (crash) by causing an external_acl queue overload, which triggers an infinite loop. La función aclMatchExternal en Squid anterior a 2.6.STABLE7 permite a atacantes remotos provocar una denegación de servicio (caída) provocando una sobrecarga de la cola external_acl, lo cual provoca un bucle infinito. • http://secunia.com/advisories/23767 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-3322
https://notcve.org/view.php?id=CVE-2005-3322
27 Oct 2005 — Unspecified vulnerability in Squid on SUSE Linux 9.0 allows remote attackers to cause a denial of service (crash) via HTTPs (SSL). • http://www.novell.com/linux/security/advisories/2005_24_sr.html •
CVSS: 7.5EPSS: 33%CPEs: 45EXPL: 0CVE-2005-3258
https://notcve.org/view.php?id=CVE-2005-3258
20 Oct 2005 — The rfc1738_do_escape function in ftp.c for Squid 2.5 STABLE11 and earlier allows remote FTP servers to cause a denial of service (segmentation fault) via certain "odd" responses. • http://secunia.com/advisories/17271 •
CVSS: 7.5EPSS: 58%CPEs: 2EXPL: 0CVE-2005-2917
https://notcve.org/view.php?id=CVE-2005-2917
30 Sep 2005 — Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart). • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt •
CVSS: 7.5EPSS: 12%CPEs: 42EXPL: 0CVE-2005-2794
https://notcve.org/view.php?id=CVE-2005-2794
07 Sep 2005 — store.c in Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (crash) via certain aborted requests that trigger an assert error related to STORE_PENDING. • http://fedoranews.org/updates/FEDORA--.shtml •
CVSS: 7.5EPSS: 15%CPEs: 61EXPL: 0CVE-2005-2796
https://notcve.org/view.php?id=CVE-2005-2796
07 Sep 2005 — The sslConnectTimeout function in ssl.c for Squid 2.5.STABLE10 and earlier allows remote attackers to cause a denial of service (segmentation fault) via certain crafted requests. • http://fedoranews.org/updates/FEDORA--.shtml •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1711
https://notcve.org/view.php?id=CVE-2005-1711
24 May 2005 — Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected. • http://securitytracker.com/id?1014030 •
CVSS: 7.5EPSS: 24%CPEs: 1EXPL: 0CVE-2005-1519
https://notcve.org/view.php?id=CVE-2005-1519
11 May 2005 — Squid 2.5 STABLE9 and earlier, when the DNS client port is unfiltered and the environment does not prevent IP spoofing, allows remote attackers to spoof DNS lookups. • http://fedoranews.org/updates/FEDORA--.shtml •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2005-1345
https://notcve.org/view.php?id=CVE-2005-1345
28 Apr 2005 — Squid 2.5.STABLE9 and earlier does not trigger a fatal error when it identifies missing or invalid ACLs in the http_access configuration, which could lead to less restrictive ACLs than intended by the administrator. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000948 •