5

CVE-2005-0095

Exploit

The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.

Data is provided by the National Vulnerability Database (NVD)
SquidSquid Version2.0_patch2
SquidSquid Version2.1_patch2
SquidSquid Version2.3_.stable4
SquidSquid Version2.3_.stable5
SquidSquid Version2.3_stable5
SquidSquid Version2.4
SquidSquid Version2.4_.stable2
SquidSquid Version2.4_.stable6
SquidSquid Version2.4_.stable7
SquidSquid Version2.4_stable7
SquidSquid Version2.5.6
SquidSquid Version2.5.stable1
SquidSquid Version2.5.stable2
SquidSquid Version2.5.stable3
SquidSquid Version2.5.stable4
SquidSquid Version2.5.stable5
SquidSquid Version2.5.stable6
SquidSquid Version2.5.stable7
SquidSquid Version2.5_.stable1
SquidSquid Version2.5_.stable3
SquidSquid Version2.5_.stable4
SquidSquid Version2.5_.stable5
SquidSquid Version2.5_.stable6
SquidSquid Version2.5_stable3
SquidSquid Version2.5_stable4
SquidSquid Version2.5_stable9
SquidSquid Version2.6.stable1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 75.84% 0.988
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P