CVE-2002-0163
published 2002-03-26CVE-2002-0163: Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
15.05%
96.3th percentile
Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| squid | squid | <= 2.4_9 | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2002-03-26·CVSS 7.5
CVE-2002-0163 [HIGH] security flaw
security flaw
Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.
GHSA
GHSA-wq2p-p836-86h4: Heap-based buffer overflow in Squid before 2
ghsa_unreviewed·2022-05-03
CVE-2002-0163 [HIGH] GHSA-wq2p-p836-86h4: Heap-based buffer overflow in Squid before 2
Heap-based buffer overflow in Squid before 2.4 STABLE4, and Squid 2.5 and 2.6 until March 12, 2002 distributions, allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via compressed DNS responses.
No detection rules found.
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-017.1.txtftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:19.squid.aschttp://marc.info/?l=bugtraq&m=101716495023226&w=2http://rhn.redhat.com/errata/RHSA-2002-051.htmlhttp://www.iss.net/security_center/static/8628.phphttp://www.linux-mandrake.com/en/security/2002/MDKSA-2002-027.phphttp://www.securityfocus.com/bid/4363http://www.squid-cache.org/Advisories/SQUID-2002_2.txtftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-017.1.txtftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:19.squid.aschttp://marc.info/?l=bugtraq&m=101716495023226&w=2http://rhn.redhat.com/errata/RHSA-2002-051.htmlhttp://www.iss.net/security_center/static/8628.phphttp://www.linux-mandrake.com/en/security/2002/MDKSA-2002-027.phphttp://www.securityfocus.com/bid/4363http://www.squid-cache.org/Advisories/SQUID-2002_2.txt
2002-03-26
Published