漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a buffer-management bug, it allows a denial of service. When resolving a request with the urn: scheme, the parser leaks a small amount of memory. However, there is an unspecified attack methodology that can easily trigger a large amount of memory consumption.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Squid 资源管理错误漏洞
Vulnerability Description
Squid是一套代理服务器和Web缓存服务器软件。该软件提供缓存万维网、过滤流量、代理上网等功能。 Squid 存在资源管理错误漏洞。远程攻击者可以欺骗用户,使代理服务器后面的用户单击特制的"urn:"链接,从而导致服务器在攻击者的控制下,迫使Squid任意消耗服务器上的大量内存。以下产品及版本存在该漏洞:Squid: 2.0, 2.0.patch1, 2.0.patch2, 2.0.pre1, 2.0.release, 2.0_patch2, 2.1, 2.1.patch1, 2.1.patch2, 2
CVSS Information
N/A
Vulnerability Type
N/A