PT-2002-1245 · Squid · Squid+1

Publicado

2002-03-26

Atualizado

2016-10-18

CVE-2002-0163

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Squid versions prior to 2.4 STABLE4 Squid 2.5 and 2.6 until March 12, 2002 distributions

Description A heap-based buffer overflow issue allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.

Recommendations For Squid versions prior to 2.4 STABLE4, update to version 2.4 STABLE4 or later. For Squid 2.5 and 2.6, ensure the distribution is from after March 12, 2002.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-0163

Produtos afetados

Squid

Squid Cache

PT-2002-1245 · Squid · Squid+1

CVE-2002-0163

Identificadores relacionados

Produtos afetados

Referências · 11