FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

squid -- denial-of-service vulnerabilities

Affected packages
squid < 2.5.9

Details

VuXML ID 5bf1a715-cc57-440f-b0a5-6406961c54a7
Discovery 2005-01-16
Entry 2005-06-03

The Squid team reported several denial-of-service vulnerabilities related to the handling of DNS responses and NT Lan Manager messages. These may allow an attacker to crash the Squid cache.

References

CVE Name CVE-2005-0096
CVE Name CVE-2005-0097
CVE Name CVE-2005-0446
URL http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-fakeauth_auth
URL http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE8-dns_assert