Описание
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the HTCP port.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 2.5.12-4ubuntu2.5 |
| devel | DNE | |
| hardy | released | 2.6.18-1ubuntu3.2 |
| intrepid | released | 2.7.STABLE3-1ubuntu2.3 |
| jaunty | released | 2.7.STABLE3-4.1ubuntu1.2 |
| karmic | released | 2.7.STABLE6-2ubuntu2.2 |
| lucid | released | 2.7.STABLE7-1ubuntu6 |
| maverick | released | 2.7.STABLE7-1ubuntu6 |
| natty | released | 2.7.STABLE7-1ubuntu6 |
| oneiric | released | 2.7.STABLE7-1ubuntu6 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | not-affected | 3.1.5-2 |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | released | 3.0.STABLE19-1ubuntu0.2 |
| maverick | not-affected | 3.1.5-2 |
| natty | not-affected | 3.1.5-2 |
| oneiric | not-affected | 3.1.5-2 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the HTCP port.
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the HTCP port.
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.ST ...
The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in 3.0 before 3.0.STABLE24, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via crafted packets to the HTCP port.
EPSS
5 Medium
CVSS2