VYPR
Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026

CVE-2005-0241

CVE-2005-0241

Description

The httpProcessReplyHeader function in http.c for Squid 2.5-STABLE7 and earlier does not properly set the debug context when it is handling "oversized" HTTP reply headers, which might allow remote attackers to poison the cache or bypass access controls based on header size.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Squid Cache/Squid7 versions
    cpe:2.3:a:squid:squid:2.5.stable1:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:squid:squid:2.5.stable1:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable2:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable3:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable4:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable5:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable6:*:*:*:*:*:*:*
    • cpe:2.3:a:squid:squid:2.5.stable7:*:*:*:*:*:*:*
  • Squidex/Squidexllm-fuzzy
    Range: <=2.5-STABLE7

Patches

Vulnerability mechanics

References

13

News mentions

0

No linked articles in our index yet.