← Back to CVEs

CVE-2004-2654

N/A

Description

The clientAbortBody function in client_side.c in Squid Web Proxy Cache before 2.6 STABLE6 allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors that trigger a null dereference. NOTE: in a followup advisory, a researcher claimed that the issue was a buffer overflow that was not fixed in STABLE6. However, the vendor's bug report clearly shows that the researcher later retracted this claim, because the tested product was actually STABLE5.

CVE Details

CVSS v3.1 ScoreN/A

Published12/31/2004

Last Modified4/16/2026

Sourcenvd

Honeypot Sightings0

Affected Products

squid:squid

References

http://secunia.com/advisories/12508(cve@mitre.org)

http://secunia.com/advisories/12754(cve@mitre.org)

http://securitytracker.com/id?1011214(cve@mitre.org)

http://www.attrition.org/pipermail/vim/2006-February/000570.html(cve@mitre.org)

http://www.osvdb.org/9801(cve@mitre.org)

http://www.securitylab.ru/47881.html(cve@mitre.org)

http://www.squid-cache.org/bugs/show_bug.cgi?id=972(cve@mitre.org)

http://secunia.com/advisories/12508(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/12754(af854a3a-2127-422b-91ae-364da2661108)

http://securitytracker.com/id?1011214(af854a3a-2127-422b-91ae-364da2661108)

http://www.attrition.org/pipermail/vim/2006-February/000570.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.osvdb.org/9801(af854a3a-2127-422b-91ae-364da2661108)

http://www.securitylab.ru/47881.html(af854a3a-2127-422b-91ae-364da2661108)

http://www.squid-cache.org/bugs/show_bug.cgi?id=972(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.