Vulnerabilities > Squid > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-15 | CVE-2005-0094 | Remote Buffer Overflow vulnerability in Squid Proxy Gopher To HTML Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses. | 5.0 |
| 2005-01-11 | CVE-2005-0097 | Remote Denial of Service vulnerability in Squid Proxy Malformed NTLM Type 3 Message The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference. | 5.0 |
| 2004-12-31 | CVE-2004-2654 | Denial-Of-Service vulnerability in Squid 2.5Stable5 The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigger a null dereference. | 5.0 |
| 2004-11-03 | CVE-2004-0832 | Denial Of Service vulnerability in Squid Proxy NTLM Authentication The (1) ntlm_fetch_string and (2) ntlm_get_string functions in Squid 2.5.6 and earlier, with NTLM authentication enabled, allow remote attackers to cause a denial of service (application crash) via an NTLMSSP packet that causes a negative value to be passed to memcpy. | 5.0 |
| 2002-12-31 | CVE-2002-2414 | Denial of Service vulnerability in Opera HTTPS Proxy Opera 6.0.3, when using Squid 2.4 for HTTPS proxying, does not properly handle when accepting a non-global certificate authority (CA) certificate from a site and establishing a subsequent HTTPS connection, which allows remote attackers to cause a denial of service (crash). | 4.3 |
| 2002-07-26 | CVE-2002-0715 | Information Disclosure vulnerability in Squid Proxy Authentication Credential Forwarding Vulnerability in Squid before 2.4.STABLE6 related to proxy authentication credentials may allow remote web sites to obtain the user's proxy login and password. | 5.0 |
| 2001-12-06 | CVE-2001-0843 | Unspecified vulnerability in Squid web Proxy Squid proxy server 2.4 and earlier allows remote attackers to cause a denial of service (crash) via a mkdir-only FTP PUT request. | 5.0 |