National Science Foundation

Squid Web Proxy Cache

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2004-2479

  • EPSS 1.03%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Squid Web Proxy Cache 2.5 might allow remote attackers to obtain sensitive information via URLs containing invalid hostnames that cause DNS operations to fail, which results in references to previously used error messages.

5

CVE-2004-2480

Exploit
  • EPSS 3.67%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Squid Web Proxy Cache 2.3.STABLE5 allows remote attackers to bypass security controls and access arbitrary websites via "@@" sequences in a URL within Internet Explorer.

10

CVE-2004-0541

  • EPSS 78.28%
  • Published 06.08.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).