QwikSec

Security Database

CVE

CWE

Training

CVE-2007-6239

Published: Dec 4, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The "cache update reply processing" functionality in Squid 2.x before 2.6.STABLE17 and Squid 3.0 allows remote attackers to cause a denial of service (crash) via unknown vectors related to HTTP headers and an Array memory leak during requests for cached objects.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

FEDORA-2007-4161

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_CERT-VN

vendor-advisory

x_refsource_GENTOO

vdb-entry

x_refsource_BID

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

http://www.squid-cache.org/Advisories/SQUID-2007_2.txt

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

oval:org.mitre.oval:def:10915

vdb-entry

signature

x_refsource_OVAL

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_GENTOO

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

https://bugzilla.redhat.com/show_bug.cgi?id=410181

x_refsource_CONFIRM

vdb-entry

x_refsource_SECTRACK

third-party-advisory

x_refsource_SECUNIA

http://bugs.gentoo.org/show_bug.cgi?id=201209

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

FEDORA-2007-4170

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_UBUNTU

http://www.squid-cache.org/Versions/v2/2.6/changesets/11780.patch

x_refsource_CONFIRM

SUSE-SR:2008:001

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.