CVE-2002-0916
EPSS 2.7%Published: 10/4/2002Modified: 4/28/2026
Also known as:DEBIAN-CVE-2002-0916
Description
Format string vulnerability in the allowuser code for the Stellar-X msntauth authentication module, as distributed in Squid 2.4.STABLE6 and earlier, allows remote attackers to execute arbitrary code via format strings in the user name, which are not properly handled in a syslog call.
Affected packages (1)
- Debian/squidfrom 0, < 2.4.7