Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2007-1560

The clientProcessRequest() function in src/client_side.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service (daemon crash) via crafted TRACE requests that trigger an assertion error.

  • Published: Mar 21, 2007
  • Updated: Apr 13, 2023
  • CVE: CVE-2007-1560
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
squid / squid 2.6.stable5 2.6.stable5.x
squid / squid 2.6.stable6 2.6.stable6.x
squid / squid 2.6.stable2 2.6.stable2.x
squid / squid 2.6.stable10 2.6.stable10.x
squid / squid 2.6.stable7 2.6.stable7.x
squid / squid 2.6.stable9 2.6.stable9.x
squid / squid 2.6.stable8 2.6.stable8.x
squid / squid 2.6.stable4 2.6.stable4.x
squid / squid 2.6.stable11 2.6.stable11.x
squid / squid 2.6.stable3 2.6.stable3.x
squid / squid 2.6.stable1 2.6.stable1.x