Description

Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 does not properly enforce "buffer limits and related bound checks," which allows remote attackers to cause a denial of service via (1) an incomplete request or (2) a request with a large header size, related to (a) HttpMsg.cc and (b) client_side.cc.

Remediation

References

CVE-2009-2621

Related Vulnerabilities

Oracle JRE CVE-2013-5817 Vulnerability (CVE-2013-5817)

WordPress Plugin Qtranslate Slug Unspecified Vulnerability (1.1.16)

WordPress Plugin WooCommerce Cross-Site Request Forgery (3.6.4)

WebLogic CVE-2021-1996 Vulnerability (CVE-2021-1996)

Oracle Database Server CVE-2010-4423 Vulnerability (CVE-2010-4423)

Severity

Medium

Classification

CVE-2009-2621 CWE-119

Tags

Missing Update Known Vulnerabilities