The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Squid

Squid: out-of-bounds memory reading via cachemgr.cgi
An attacker can force a read at an invalid address via cachemgr.cgi of Squid, in order to trigger a denial of service, or to obtain sensitive information...
CERTFR-2019-AVI-332, CVE-2019-12854, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, SQUID-2019:1, SUSE-SU-2019:2975-1, USN-4213-1, VIGILANCE-VUL-29769
Squid: information disclosure via Basic Authentication uudecode
An attacker can bypass access restrictions to data via Basic Authentication uudecode of Squid, in order to obtain sensitive information...
CERTFR-2019-AVI-332, CVE-2019-12529, DLA-1858-1, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, SQUID-2019:2, SUSE-SU-2019:2089-1, SUSE-SU-2019:2975-1, USN-4065-1, USN-4065-2, VIGILANCE-VUL-29762
Squid: integer overflow via Digest Authentication Single Quote
An attacker can trigger an integer overflow via Digest Authentication Single Quote of Squid, in order to trigger a denial of service, and possibly to run code...
CERTFR-2019-AVI-332, CVE-2019-12525, DLA-1858-1, DSA-4507-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, SQUID-2019:3, SUSE-SU-2019:2089-1, SUSE-SU-2019:2975-1, USN-4065-1, USN-4065-2, VIGILANCE-VUL-29760
Squid: Cross Site Scripting via cachemgr.cgi
An attacker can trigger a Cross Site Scripting via cachemgr.cgi of Squid, in order to run JavaScript code in the context of the web site...
4957, CERTFR-2019-AVI-332, CVE-2019-13345, DLA-1847-1, DSA-4507-1, openSUSE-SU-2019:1963-1, openSUSE-SU-2019:2540-1, openSUSE-SU-2019:2541-1, RHSA-2019:3476-01, SQUID-2019:6, SUSE-SU-2019:2089-1, SUSE-SU-2019:2092-1, SUSE-SU-2019:2975-1, SUSE-SU-2019:3067-1, USN-4059-1, USN-4059-2, VIGILANCE-VUL-29702
Squid cache: denial of service via SNMP
An attacker can send malicious SNMP packets to Squid cache, in order to trigger a denial of service...
CERTFR-2018-AVI-518, SQUID-2018:5, VIGILANCE-VUL-27634
Squid cache: Cross Site Scripting via TLS Errors
An attacker can trigger a Cross Site Scripting via TLS Errors of Squid cache, in order to run JavaScript code in the context of the web site...
bulletinoct2018, CERTFR-2018-AVI-518, CVE-2018-19131, CVE-2018-19132, DLA-1596-1, FEDORA-2018-714298460e, openSUSE-SU-2018:3818-1, openSUSE-SU-2018:3825-1, SQUID-2018:4, SUSE-SU-2018:3771-1, SUSE-SU-2018:3771-2, SUSE-SU-2018:3786-1, SUSE-SU-2018:3790-1, USN-4059-1, USN-4059-2, VIGILANCE-VUL-27633
Squid cache: denial of service via ESI Response
An attacker can generate a fatal error via ESI Response of Squid cache, in order to trigger a denial of service...
CERTFR-2018-AVI-192, CVE-2018-1172, openSUSE-SU-2018:1135-1, SQUID-2018:3, SUSE-SU-2018:1365-1, VIGILANCE-VUL-25912, ZDI-18-309
Squid cache: denial of service
An attacker can generate a fatal error of Squid cache, in order to trigger a denial of service...
bulletinjul2018, CERTFR-2018-AVI-046, CVE-2018-1000024, CVE-2018-1000027, DLA-1266-1, DLA-1267-1, DSA-4122-1, FEDORA-2018-4fabf63492, openSUSE-SU-2018:0647-1, SQUID-2018:1, SQUID-2018:2, USN-3557-1, VIGILANCE-VUL-25134
Squid cache: two vulnerabilities
An attacker can use several vulnerabilities of Squid cache...
CERTFR-2016-AVI-422, CVE-2016-10002, CVE-2016-10003, DLA-763-1, DSA-3745-1, FEDORA-2016-c614315d29, openSUSE-SU-2017:0192-1, RHSA-2017:0182-01, RHSA-2017:0183-01, USN-3192-1, VIGILANCE-VUL-21417
Squid: three vulnerabilities
An attacker can use several vulnerabilities of Squid...
CERTFR-2016-AVI-157, CVE-2016-4553, CVE-2016-4554, CVE-2016-4555, CVE-2016-4556, DLA-478-1, DLA-556-1, DLA-558-1, DSA-3625-1, FEDORA-2016-95edf19d8a, FEDORA-2016-b3b9407940, openSUSE-SU-2016:2081-1, RHSA-2016:1138-01, RHSA-2016:1139-01, RHSA-2016:1140-01, SQUID-2016:7, SQUID-2016:8, SQUID-2016:9, SUSE-SU-2016:1996-1, SUSE-SU-2016:2089-1, USN-2995-1, VIGILANCE-VUL-19548
Our database contains other pages. You can request a free trial to read them.

Display information about Squid: