Squid Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2013-4115)

Description

Buffer overflow in the idnsALookup function in dns_internal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service (memory corruption and server termination) via a long name in a DNS lookup request.

Remediation

References

CVE-2013-4115

Related Vulnerabilities

b2evolution Improper Input Validation Vulnerability (CVE-2017-1000423)

Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-30556)

Serendipity Other Vulnerability (CVE-2004-1620)

OpenSSL Other Vulnerability (CVE-2002-0659)

WordPress 3.7.4 Multiple Vulnerabilities (3.7 - 3.7.4)

Severity

High

Classification

CVE-2013-4115 CWE-119