Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveRedhatCVE-2013-4123
HistorySep 16, 2013 - 7:14 p.m.

CVE-2013-4123

2013-09-1619:14:38
CWE-20
redhat
web.nvd.nist.gov
133
cve-2013-4123
squid
denial of service
http host header
security vulnerability

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.948

Percentile

99.3%

JSON

client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header.

Affected configurations

Nvd
Node
squid-cachesquidMatch3.3.0
OR
squid-cachesquidMatch3.3.0.2
OR
squid-cachesquidMatch3.3.0.3
OR
squid-cachesquidMatch3.3.1
OR
squid-cachesquidMatch3.3.2
OR
squid-cachesquidMatch3.3.3
OR
squid-cachesquidMatch3.3.4
OR
squid-cachesquidMatch3.3.5
OR
squid-cachesquidMatch3.3.6
OR
squid-cachesquidMatch3.3.7
Node
opensuseopensuseMatch12.3
Node
squid-cachesquidMatch3.2.0.1
OR
squid-cachesquidMatch3.2.0.2
OR
squid-cachesquidMatch3.2.0.3
OR
squid-cachesquidMatch3.2.0.4
OR
squid-cachesquidMatch3.2.0.5
OR
squid-cachesquidMatch3.2.0.6
OR
squid-cachesquidMatch3.2.0.7
OR
squid-cachesquidMatch3.2.0.8
OR
squid-cachesquidMatch3.2.0.9
OR
squid-cachesquidMatch3.2.0.10
OR
squid-cachesquidMatch3.2.0.11
OR
squid-cachesquidMatch3.2.0.12
OR
squid-cachesquidMatch3.2.0.13
OR
squid-cachesquidMatch3.2.0.14
OR
squid-cachesquidMatch3.2.0.15
OR
squid-cachesquidMatch3.2.0.16
OR
squid-cachesquidMatch3.2.0.17
OR
squid-cachesquidMatch3.2.0.18
OR
squid-cachesquidMatch3.2.0.19
OR
squid-cachesquidMatch3.2.1
OR
squid-cachesquidMatch3.2.2
OR
squid-cachesquidMatch3.2.3
OR
squid-cachesquidMatch3.2.4
OR
squid-cachesquidMatch3.2.5
OR
squid-cachesquidMatch3.2.6
OR
squid-cachesquidMatch3.2.7
OR
squid-cachesquidMatch3.2.8
OR
squid-cachesquidMatch3.2.9
OR
squid-cachesquidMatch3.2.10
OR
squid-cachesquidMatch3.2.11
OR
squid-cachesquidMatch3.2.12
VendorProductVersionCPE
squid-cachesquid3.3.0cpe:2.3:a:squid-cache:squid:3.3.0:*:*:*:*:*:*:*
squid-cachesquid3.3.0.2cpe:2.3:a:squid-cache:squid:3.3.0.2:*:*:*:*:*:*:*
squid-cachesquid3.3.0.3cpe:2.3:a:squid-cache:squid:3.3.0.3:*:*:*:*:*:*:*
squid-cachesquid3.3.1cpe:2.3:a:squid-cache:squid:3.3.1:*:*:*:*:*:*:*
squid-cachesquid3.3.2cpe:2.3:a:squid-cache:squid:3.3.2:*:*:*:*:*:*:*
squid-cachesquid3.3.3cpe:2.3:a:squid-cache:squid:3.3.3:*:*:*:*:*:*:*
squid-cachesquid3.3.4cpe:2.3:a:squid-cache:squid:3.3.4:*:*:*:*:*:*:*
squid-cachesquid3.3.5cpe:2.3:a:squid-cache:squid:3.3.5:*:*:*:*:*:*:*
squid-cachesquid3.3.6cpe:2.3:a:squid-cache:squid:3.3.6:*:*:*:*:*:*:*
squid-cachesquid3.3.7cpe:2.3:a:squid-cache:squid:3.3.7:*:*:*:*:*:*:*
Rows per page:
1-10 of 421

Related

ubuntucve 1
checkpoint_advisories 1
debiancve 1
nessus 7
nvd 1
exploitdb 1
cvelist 1
prion 1
openvas 11
freebsd 1
fedora 5
mageia 1
gentoo 1
ubuntucve
ubuntucve
CVE-2013-4123
2013-09-16 00:00:00
checkpoint_advisories
checkpoint_advisories
Squid HTTP Host Header Port Handling Denial of Service (CVE-2013-4123)
2013-10-13 00:00:00
debiancve
debiancve
CVE-2013-4123
2013-09-16 19:14:38
nessus
nessus
FreeBSD : squid -- denial of service (30a04ab4-ed7b-11e2-8643-8c705af55518)
2013-07-16 00:00:00
Oracle Solaris Third-Party Patch Update : squid (cve_2013_4123_input_validation)
2015-01-19 00:00:00
Squid 3.2.x < 3.2.13 / 3.3.x < 3.3.8 Port Handling DoS
2013-07-24 00:00:00
nvd
nvd
CVE-2013-4123
2013-09-16 19:14:38
exploitdb
exploitdb
Squid 3.3.5 - Denial of Service (PoC)
2013-07-16 00:00:00
cvelist
cvelist
CVE-2013-4123
2013-09-16 19:00:00
prion
prion
Design/Logic Flaw
2013-09-16 19:14:00
openvas
openvas
Squid Host Header DoS Vulnerability (SQUID-2013:3)
2013-08-12 00:00:00
Mageia: Security Advisory (MGASA-2013-0228)
2022-01-28 00:00:00
Fedora Update for squid FEDORA-2013-13468
2013-08-20 00:00:00
freebsd
freebsd
squid -- denial of service
2013-07-13 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: squid-3.2.13-1.fc19
2013-08-02 21:49:28
[SECURITY] Fedora 19 Update: squid-3.3.12-1.fc19
2014-04-15 15:38:43
[SECURITY] Fedora 19 Update: squid-3.3.13-1.fc19
2014-09-10 13:25:50
mageia
mageia
Updated squid packages fix security vulnerabilities
2013-07-22 00:18:36
gentoo
gentoo
Squid: Multiple vulnerabilities
2013-09-27 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

Low

EPSS

0.948

Percentile

99.3%

JSON
Related for CVE-2013-4123
ubuntucve1checkpoint_advisories1debiancve1nessus7nvd1exploitdb1cvelist1prion1openvas11freebsd1fedora5mageia1gentoo1