5
CVE-2013-0189
- EPSS 23.03%
- Veröffentlicht 08.02.2013 20:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
cachemgr.cgi in Squid 3.1.x and 3.2.x, possibly 3.1.22, 3.2.4, and other versions, allows remote attackers to cause a denial of service (resource consumption) via a crafted request. NOTE: this issue is due to an incorrect fix for CVE-2012-5643, possibly involving an incorrect order of arguments or incorrect comparison.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Squid-cache ≫ Squid Version3.1
Squid-cache ≫ Squid Version3.1.0.1
Squid-cache ≫ Squid Version3.1.0.2
Squid-cache ≫ Squid Version3.1.0.3
Squid-cache ≫ Squid Version3.1.0.4
Squid-cache ≫ Squid Version3.1.0.5
Squid-cache ≫ Squid Version3.1.0.6
Squid-cache ≫ Squid Version3.1.0.7
Squid-cache ≫ Squid Version3.1.0.8
Squid-cache ≫ Squid Version3.1.0.9
Squid-cache ≫ Squid Version3.1.0.10
Squid-cache ≫ Squid Version3.1.0.11
Squid-cache ≫ Squid Version3.1.0.12
Squid-cache ≫ Squid Version3.1.0.13
Squid-cache ≫ Squid Version3.1.0.14
Squid-cache ≫ Squid Version3.1.0.15
Squid-cache ≫ Squid Version3.1.0.16
Squid-cache ≫ Squid Version3.1.0.17
Squid-cache ≫ Squid Version3.1.0.18
Squid-cache ≫ Squid Version3.1.1
Squid-cache ≫ Squid Version3.1.2
Squid-cache ≫ Squid Version3.1.3
Squid-cache ≫ Squid Version3.1.4
Squid-cache ≫ Squid Version3.1.5
Squid-cache ≫ Squid Version3.1.5.1
Squid-cache ≫ Squid Version3.1.6
Squid-cache ≫ Squid Version3.1.7
Squid-cache ≫ Squid Version3.1.8
Squid-cache ≫ Squid Version3.1.9
Squid-cache ≫ Squid Version3.1.10
Squid-cache ≫ Squid Version3.1.11
Squid-cache ≫ Squid Version3.1.12
Squid-cache ≫ Squid Version3.1.13
Squid-cache ≫ Squid Version3.1.14
Squid-cache ≫ Squid Version3.1.15
Squid-cache ≫ Squid Version3.1.22
Squid-cache ≫ Squid Version3.2.0.1
Squid-cache ≫ Squid Version3.2.0.2
Squid-cache ≫ Squid Version3.2.0.3
Squid-cache ≫ Squid Version3.2.0.4
Squid-cache ≫ Squid Version3.2.0.5
Squid-cache ≫ Squid Version3.2.0.6
Squid-cache ≫ Squid Version3.2.0.7
Squid-cache ≫ Squid Version3.2.0.8
Squid-cache ≫ Squid Version3.2.0.9
Squid-cache ≫ Squid Version3.2.0.10
Squid-cache ≫ Squid Version3.2.0.11
Squid-cache ≫ Squid Version3.2.0.12
Squid-cache ≫ Squid Version3.2.0.13
Squid-cache ≫ Squid Version3.2.0.14
Squid-cache ≫ Squid Version3.2.0.15
Squid-cache ≫ Squid Version3.2.0.16
Squid-cache ≫ Squid Version3.2.0.17
Squid-cache ≫ Squid Version3.2.0.18
Squid-cache ≫ Squid Version3.2.0.19
Squid-cache ≫ Squid Version3.2.1
Squid-cache ≫ Squid Version3.2.2
Squid-cache ≫ Squid Version3.2.3
Squid-cache ≫ Squid Version3.2.4
Canonical ≫ Ubuntu Linux Version10.04 Update- Editionlts
Canonical ≫ Ubuntu Linux Version11.10
Canonical ≫ Ubuntu Linux Version12.04 Update- Editionlts
Canonical ≫ Ubuntu Linux Version12.10
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 23.03% | 0.975 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00025.html
http://lists.opensuse.org/opensuse-updates/2013-09/msg00032.html
http://secunia.com/advisories/52024
http://secunia.com/advisories/54839
http://www.debian.org/security/2013/dsa-2631
http://www.mandriva.com/security/advisories?name=MDVSA-2013:129
http://bazaar.launchpad.net/~squid/squid/3.2/revision/11743
http://bazaar.launchpad.net/~squid/squid/3.2/revision/11744
http://lists.fedoraproject.org/pipermail/scm-commits/2013-January/934637.html
http://www.securityfocus.com/bid/57646
http://www.squid-cache.org/Versions/v3/3.1/changesets/SQUID-2012_1.patch
http://www.squid-cache.org/Versions/v3/3.2/changesets/SQUID-2012_1.patch
http://www.ubuntu.com/usn/USN-1713-1
https://bugzilla.redhat.com/show_bug.cgi?id=887962#c9
https://bugzilla.redhat.com/show_bug.cgi?id=895972
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0029