Back to search
CVE-2009-3826
Published: Oct 28, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple buffer overflows in squidGuard 1.4 allow remote attackers to bypass intended URL blocking via a long URL, related to (1) the relationship between a certain buffer size in squidGuard and a certain buffer size in Squid and (2) a redirect URL that contains information about the originally requested URL.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://www.squidguard.org/Downloads/Patches/1.4/Readme.Patch-20091019
x_refsource_CONFIRM
squidguard-url-security-bypass(53922)
vdb-entry
x_refsource_XF
ADV-2009-3013
vdb-entry
x_refsource_VUPEN
1023079
vdb-entry
x_refsource_SECTRACK
37107
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1043
vdb-entry
x_refsource_VUPEN
59164
vdb-entry
x_refsource_OSVDB
DSA-2040
vendor-advisory
x_refsource_DEBIAN
SUSE-SR:2010:014
vendor-advisory
x_refsource_SUSE
36800
vdb-entry
x_refsource_BID
39679
third-party-advisory
x_refsource_SECUNIA
20091026 squidGuard 1.3 & 1.4 : buffer overflow
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now