Unrated severityNVD Advisory· Published Jan 27, 2005· Updated Apr 16, 2026
CVE-2004-0918
CVE-2004-0918
Description
The asn_parse_header function (asn1.c) in the SNMP module for Squid Web Proxy Cache before 2.4.STABLE7 allows remote attackers to cause a denial of service (server restart) via certain SNMP packets with negative length fields that trigger a memory allocation error.
Affected products
26cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*+ 15 more
- cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:3.0_pre1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:3.0_pre2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:3.0_pre3:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:fedora_core:core_2.0:*:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
17- www.redhat.com/support/errata/RHSA-2004-591.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/11385nvdPatchVendor Advisory
- secunia.com/advisories/30914nvdVendor Advisory
- secunia.com/advisories/30967nvdVendor Advisory
- www.vupen.com/english/advisories/2008/1969/referencesnvdVendor Advisory
- ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.16/SCOSA-2005.16.txtnvd
- distro.conectiva.com.br/atualizacoes/nvd
- fedoranews.org/updates/FEDORA--.shtmlnvd
- lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.htmlnvd
- marc.infonvd
- www.gentoo.org/security/en/glsa/glsa-200410-15.xmlnvd
- www.idefense.com/application/poi/displaynvd
- www.squid-cache.org/Advisories/SQUID-2004_3.txtnvd
- www.squid-cache.org/Advisories/SQUID-2008_1.txtnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/17688nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10931nvd
- www.redhat.com/archives/fedora-package-announce/2008-July/msg00122.htmlnvd
News mentions
0No linked articles in our index yet.