Denial Of Service (DoS)

2023-11-1218:41:45

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

denial of service

buffer overflow

squid vulnerability

http digest authentication

security compromise

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

8.3 High

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

91.0%

JSON

squid is vulnerable to a Denial Of Service (DoS). In this scenario, a remote attacker has the potential to execute a buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory. This occurs specifically when Squid is configured to accept HTTP Digest Authentication. Buffer overflow attacks can lead to unauthorized access, code execution, or other security compromises.

CPENameOperatorVersion
squid:sideq4.13-6
squid:sideq4.13-1
squid:bustereq4.6-1+deb10u6
squid:bustereq4.6-1+deb10u4
squid:edgeeq5.1-r0
squid:edgeeq6.3-r0
squid:edgeeq5.6-r0
squid:edgeeq5.9-r1
squid:edgeeq5.5-r0
squid:edgeeq4.10-r0

Name	Operator	Version
squid:sid	eq	4.13-6
squid:sid	eq	4.13-1
squid:buster	eq	4.6-1+deb10u6
squid:buster	eq	4.6-1+deb10u4
squid:edge	eq	5.1-r0
squid:edge	eq	6.3-r0
squid:edge	eq	5.6-r0
squid:edge	eq	5.9-r1
squid:edge	eq	5.5-r0
squid:edge	eq	4.10-r0