Description

The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.

Remediation

References

CVE-2010-3072

Related Vulnerabilities

WordPress Plugin Z-Vote 'zvote' Parameter SQL Injection (1.1)

Python Files or Directories Accessible to External Parties Vulnerability (CVE-2019-13404)

Oracle JRE CVE-2017-10346 Vulnerability (CVE-2017-10346)

WordPress Plugin Simply Poll SQL Injection (1.4.1)

WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Security Bypass (2.15)

Severity

Medium

Classification

CVE-2010-3072

Tags

Missing Update Known Vulnerabilities