Description

Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow.

Remediation

References

CVE-2014-6270

Related Vulnerabilities

Joomla Improper Input Validation Vulnerability (CVE-2006-4468)

MySQL CVE-2015-0433 Vulnerability (CVE-2015-0433)

WordPress Plugin Nested Pages Cross-Site Scripting (1.6.5.2)

Apache Tomcat Resource Management Errors Vulnerability (CVE-2011-4858)

WordPress Plugin Google Shortlink by BestWebSoft Cross-Site Scripting (1.5.2)

Severity

Medium

Classification

CVE-2014-6270 CWE-119

Tags

Missing Update Known Vulnerabilities