Unrated severityNVD Advisory· Published Jan 15, 2005· Updated Apr 16, 2026
CVE-2005-0095
CVE-2005-0095
Description
The WCCP message parsing code in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via malformed WCCP messages with source addresses that are spoofed to reference Squid's home router and invalid WCCP_I_SEE_YOU cache numbers.
Affected products
27cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*+ 26 more
- cpe:2.3:a:squid:squid:2.0_patch2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.1_patch2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.3_.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.3_stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.3_.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_stable7:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.4_.stable7:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable1:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable2:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable3:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable4:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable5:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_.stable6:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5.stable7:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.5_stable9:*:*:*:*:*:*:*
- cpe:2.3:a:squid:squid:2.6.stable1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
16- distro.conectiva.com.br/atualizacoes/nvdPatchVendor Advisory
- secunia.com/advisories/13825nvdPatchVendor Advisory
- security.gentoo.org/glsa/glsa-200501-25.xmlnvdPatchVendor Advisory
- www.debian.org/security/2005/dsa-651nvdPatchVendor Advisory
- www.novell.com/linux/security/advisories/2005_06_squid.htmlnvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2005-060.htmlnvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2005-061.htmlnvdPatchVendor Advisory
- www.squid-cache.org/Advisories/SQUID-2005_2.txtnvdPatchVendor Advisory
- www.trustix.org/errata/2005/0003/nvdPatchVendor Advisory
- www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE7-wccp_denial_of_service.patchnvdExploitVendor Advisory
- fedoranews.org/updates/FEDORA--.shtmlnvd
- securitytracker.com/idnvd
- www.mandriva.com/security/advisoriesnvd
- www.osvdb.org/12886nvd
- www.securityfocus.com/bid/12275nvd
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10269nvd
News mentions
0No linked articles in our index yet.