CVE-2005-0094

Buffer overflow in the gopherToHTML function in the Gopher reply parser for Squid 2.5.STABLE7 and earlier allows remote malicious Gopher servers to cause a denial of service (crash) via crafted responses.

Affected Software

Name	Vendor	Start Version	End Version
Squid	Squid	2.0_patch2 (including)	2.0_patch2 (including)
Squid	Squid	2.1_patch2 (including)	2.1_patch2 (including)
Squid	Squid	2.3_.stable4 (including)	2.3_.stable4 (including)
Squid	Squid	2.3_.stable5 (including)	2.3_.stable5 (including)
Squid	Squid	2.3_stable5 (including)	2.3_stable5 (including)
Squid	Squid	2.4 (including)	2.4 (including)
Squid	Squid	2.4_.stable2 (including)	2.4_.stable2 (including)
Squid	Squid	2.4_.stable6 (including)	2.4_.stable6 (including)
Squid	Squid	2.4_.stable7 (including)	2.4_.stable7 (including)
Squid	Squid	2.4_stable7 (including)	2.4_stable7 (including)
Squid	Squid	2.5.6 (including)	2.5.6 (including)
Squid	Squid	2.5.stable1 (including)	2.5.stable1 (including)
Squid	Squid	2.5.stable2 (including)	2.5.stable2 (including)
Squid	Squid	2.5.stable3 (including)	2.5.stable3 (including)
Squid	Squid	2.5.stable4 (including)	2.5.stable4 (including)
Squid	Squid	2.5.stable5 (including)	2.5.stable5 (including)
Squid	Squid	2.5.stable6 (including)	2.5.stable6 (including)
Squid	Squid	2.5.stable7 (including)	2.5.stable7 (including)
Squid	Squid	2.5_.stable1 (including)	2.5_.stable1 (including)
Squid	Squid	2.5_.stable3 (including)	2.5_.stable3 (including)
Squid	Squid	2.5_.stable4 (including)	2.5_.stable4 (including)
Squid	Squid	2.5_.stable5 (including)	2.5_.stable5 (including)
Squid	Squid	2.5_.stable6 (including)	2.5_.stable6 (including)
Squid	Squid	2.5_stable3 (including)	2.5_stable3 (including)
Squid	Squid	2.5_stable4 (including)	2.5_stable4 (including)
Squid	Squid	2.5_stable9 (including)	2.5_stable9 (including)
Squid	Squid	2.6.stable1 (including)	2.6.stable1 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0094
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References