QwikSec

Security Database

CVE

CWE

Training

CVE-2005-0211

Published: Feb 6, 2005

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_SECTRACK

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_CERT-VN

third-party-advisory

x_refsource_SECUNIA

FLSA-2006:152809

vendor-advisory

x_refsource_FEDORA

vdb-entry

x_refsource_BID

http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE7-wccp_buffer_overflow.patch

x_refsource_CONFIRM

vendor-advisory

x_refsource_REDHAT

oval:org.mitre.oval:def:9573

vdb-entry

signature

x_refsource_OVAL

vendor-advisory

x_refsource_MANDRAKE

vendor-advisory

x_refsource_DEBIAN

20050207 [USN-77-1] Squid vulnerabilities

mailing-list

x_refsource_BUGTRAQ

SUSE-SA:2005:006

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-wccp_buffer_overflow

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.