National Science Foundation : Security Vulnerabilities, CVEs, CVSS score >= 7
CVE-2004-0541
Public exploit
Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).
Max CVSS
10.0
EPSS Score
96.32%
Published
2004-08-06
Updated
2018-05-03
Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.
Max CVSS
7.5
EPSS Score
1.64%
Published
1998-02-20
Updated
2017-12-19
2 vulnerabilities found