cbcvebase.
CVE-2005-0095
published 2005-01-15

CVE-2005-0095: The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with…

PriorityP431medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
68.78%
99.3th percentile
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.

Affected

32 ranges· showing 25
VendorProductVersion rangeFixed in
debiansquid< squid 2.5.7-4 (bookworm)squid 2.5.7-4 (bookworm)
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid
squidsquid

Detection & IOCsextracted from sources · hover to see the quote

  • Malformed WCCP message must contain an invalid WCCP_I_SEE_YOU cache number to trigger the crash in Squid's WCCP message parsing code
  • ·Affected versions are Squid 2.5.STABLE7 and earlier; Debian fixed in package version 2.5.7-4

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.