Vulnerability in N/a
CVE-2007-0248
The aclMatchExternal function in Squid before 2.6.STABLE7 allows remote attackers to cause a denial of service (crash) by causing an external_acl queue overload, which triggers an infinite loop.
EPSS: 0.526 (98.0th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- www.squid-cache.org/Versions/v2/2.6/squid-2.6.STABLE7-RELEASENOTES.html (x_refsource_CONFIRM)
- 22203 (vdb-entry, x_refsource_BID)
- 23921 (x_refsource_SECUNIA, third-party-advisory)
- 23946 (x_refsource_SECUNIA, third-party-advisory)
- ADV-2007-0199 (vdb-entry, x_refsource_VUPEN)
- GLSA-200701-22 (vendor-advisory, x_refsource_GENTOO)
- SUSE-SA:2007:012 (vendor-advisory, x_refsource_SUSE)
- MDKSA-2007:026 (vendor-advisory, x_refsource_MANDRIVA)
- squid-externalacl-dos(31525) (vdb-entry, x_refsource_XF)
- USN-414-1 (x_refsource_UBUNTU, vendor-advisory)