| Max CVSS | 10.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2005-0095 | 5.0 |
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU
|
11-10-2017 - 01:29 | 15-01-2005 - 05:00 | |
| CVE-2004-0918 | 5.0 |
The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory al
|
11-10-2017 - 01:29 | 27-01-2005 - 05:00 | |
| CVE-2005-0094 | 5.0 |
Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.
|
11-10-2017 - 01:29 | 15-01-2005 - 05:00 | |
| CVE-2005-0096 | 5.0 |
Memory leak in the NTLM fakeauth_auth helper for Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (memory consumption).
|
11-10-2017 - 01:29 | 25-01-2005 - 05:00 | |
| CVE-2005-0173 | 7.5 |
squid_ldap_auth in Squid 2.5 and earlier allows remote authenticated users to bypass username-based Access Control Lists (ACLs) via a username with a space at the beginning or end, which is ignored by the LDAP server.
|
11-10-2017 - 01:29 | 02-05-2005 - 04:00 | |
| CVE-2005-0194 | 10.0 |
Squid 2.5, when processing the configuration file, parses empty Access Control Lists (ACLs), including proxy_auth ACLs without defined auth schemes, in a way that effectively removes arguments, which could allow remote attackers to bypass intended AC
|
18-10-2016 - 03:08 | 02-05-2005 - 04:00 |