CVE-2005-0446

EPSS 65.9%

squid - mising input sanitising

發布日:2005/5/2修改日:2026/4/28

也稱為:DEBIAN-CVE-2005-0446

描述

Squid 2.5.STABLE8 and earlier allows remote attackers to cause a denial of service (crash) via certain DNS responses regarding (1) Fully Qualified Domain Names (FQDN) in fqdncache.c or (2) IP addresses in ipcache.c, which trigger an assertion failure.

受影響套件(2)

Debian/squidfrom 0, < 2.5.8-3
Debian/squidfrom 0, < 2.4.6-2woody7

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-0446