CVE-2005-0211
Published May 2, 2005
Last updated 6 years ago
Overview
- Description
- Buffer overflow in wccp.c in Squid 2.5 before 2.5.STABLE7 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long WCCP packet, which is processed by a recvfrom function call that uses an incorrect length parameter.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-119
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2914D032-6969-4522-8D2F-B93D55CB4231"
},
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3DBDF00F-0FCC-4C6B-8541-7FBF2FF79CEB"
},
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1460A9BC-464D-47FC-9CDE-08E094E84520"
},
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FA370C48-58E9-4A66-8CEB-01ABB90DDDF4"
},
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7D47FF1-44FC-4798-B7DB-45B3825496AF"
},
{
"criteria": "cpe:2.3:a:squid-cache:squid:2.5.stable6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AFABF40-3269-44D6-98BE-30030002BB40"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2CAE037F-111C-4A76-8FFE-716B74D65EF3"
}
],
"operator": "OR"
}
]
}
]