Description

The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.

Remediation

References

CVE-2010-3072

Related Vulnerabilities

MySQL CVE-2021-2471 Vulnerability (CVE-2021-2471)

PHP Other Vulnerability (CVE-2015-4601)

Python Credentials Management Errors Vulnerability (CVE-2019-10160)

Sqlite Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-6607)

Apache Tomcat Cryptographic Issues Vulnerability (CVE-2011-5064)

Severity

Medium

Classification

CVE-2010-3072

Tags

Missing Update Known Vulnerabilities