DescriptionThe WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2005:006, published Thursday, Feb 10th 2005 13:30 MET
- SUSE-SR:2005:003, published Wednesday, Feb 4th 2005 15:00 MEST
SUSE Timeline for this CVECVE page created: Fri Jun 28 00:56:11 2013
CVE page last modified: Fri Oct 7 12:45:29 2022