Description

Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted UDP SNMP request, which triggers a heap-based buffer overflow.

Remediation

References

CVE-2014-6270

Related Vulnerabilities

WordPress Plugin WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection-StopBadBots Cross-Site Scripting (6.61)

OpenVPN AS Insertion of Sensitive Information into Log File Vulnerability (CVE-2022-33737)

Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-4297)

WordPress Plugin Survey Maker-Best WordPress Survey Cross-Site Scripting (2.0.6)

WordPress Plugin mb.YTPlayer for background videos Unspecified Vulnerability (1.7.2)

Severity

Medium

Classification

CVE-2014-6270 CWE-119

Tags

Missing Update Known Vulnerabilities