Description

cachemgr.cgi in Squid 3.1.x and 3.2.x, possibly 3.1.22, 3.2.4, and other versions, allows remote attackers to cause a denial of service (resource consumption) via a crafted request. NOTE: this issue is due to an incorrect fix for CVE-2012-5643, possibly involving an incorrect order of arguments or incorrect comparison.

Remediation

References

CVE-2013-0189

Related Vulnerabilities

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2151)

WordPress Plugin Notices Ticker Cross-Site Scripting (6.1)

SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17309)

WordPress Plugin Slider Hero with Animation, Video Background SQL Injection (8.2.6)

WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Unspecified Vulnerability (2.2.4.1)

Severity

Medium

Classification

CVE-2013-0189 CWE-119

Tags

Missing Update Known Vulnerabilities