漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a memory-management bug, it is vulnerable to a Denial of Service attack (against all clients using the proxy) via HTTP Range request processing.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Squid 输入验证错误漏洞
Vulnerability Description
Squid是一套代理服务器和Web缓存服务器软件。该软件提供缓存万维网、过滤流量、代理上网等功能。 Squid 存在输入验证错误漏洞。该漏洞源于程序执行HTTP Range请求时对用户提供的输入的验证不足,远程代理客户端可以通过代理服务器发送特制的HTTP请求并导致拒绝服务攻击。以下产品及版本存在该漏洞:Squid: 2.5, 2.5.6, 2.5.9, 2.5.stable1, 2.5.stable2, 2.5.stable3, 2.5.stable4, 2.5.stable5, 2.5.stable6
CVSS Information
N/A
Vulnerability Type
N/A