VYPR

Squid Analysis Report Generator

by Sarg

CVEs (3)

  • CVE-2008-1167Mar 5, 2008
    risk 0.01cvss epss 0.07

    Stack-based buffer overflow in the useragent function in useragent.c in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to execute arbitrary code via a long Squid proxy server User-Agent header. NOTE: some of these details are obtained from third party…

  • CVE-2008-1922May 13, 2008
    risk 0.00cvss epss 0.04

    Multiple stack-based buffer overflows in Sarg might allow attackers to execute arbitrary code via unknown vectors, probably a crafted Squid log file.

  • CVE-2008-1168Mar 5, 2008
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this…