| Max CVSS | 5.0 | Min CVSS | 4.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2008-1612 | 4.3 |
The arrayShrink function (lib/Array.c) in Squid 2.6.STABLE17 allows attackers to cause a denial of service (process exit) via unknown vectors that cause an array to shrink to 0 entries, which triggers an assert error. NOTE: this issue is due to an in
|
13-02-2023 - 02:18 | 01-04-2008 - 17:44 | |
| CVE-2007-1560 | 5.0 |
The clientProcessRequest() function in src/client_side.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service (daemon crash) via crafted TRACE requests that trigger an assertion error.
|
11-10-2017 - 01:31 | 21-03-2007 - 18:19 | |
| CVE-2007-6239 | 5.0 |
The "cache update reply processing" functionality in Squid 2.x before 2.6.STABLE17 and Squid 3.0 allows remote attackers to cause a denial of service (crash) via unknown vectors related to HTTP headers and an Array memory leak during requests for cac
|
29-09-2017 - 01:29 | 04-12-2007 - 18:46 | |
| CVE-2010-0308 | 4.0 |
lib/rfc1035.c in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15 allows remote attackers to cause a denial of service (assertion failure) via a crafted DNS packet that only contains a header.
|
19-09-2017 - 01:30 | 03-02-2010 - 18:30 | |
| CVE-2014-3609 | 5.0 |
HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via a request with crafted "Range headers with unidentifiable byte-range values."
|
07-01-2017 - 03:00 | 11-09-2014 - 18:55 |