CVE-2007-0247

NONE EPSS 97.0%
Published Jan 16, 200719y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jan 16, 2007 19y ago
Last Modified Jun 16, 2026 2w ago

Description

squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.

Threat Intelligence

EPSS Exploit Probability
97.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-399

Affected Products 6

VendorProductVersionRange
squidsquid2.6.stable1any
squidsquid2.6.stable2any
squidsquid2.6.stable3any
squidsquid2.6.stable4any
squidsquid2.6.stable5any
squidsquid2.6.stable6any

References 19

  • fedoranews.org http://fedoranews.org/cms/node/2442
  • osvdb.org http://osvdb.org/39839
  • secunia.com http://secunia.com/advisories/23767
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23805
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23810
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23837
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23889
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23921
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/23946
    Vendor Advisory
  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200701-22.xml
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2007:026
  • novell.com http://www.novell.com/linux/security/advisories/2007_12_squid.html
  • securityfocus.com http://www.securityfocus.com/bid/22079
  • squid-cache.org http://www.squid-cache.org/Versions/v2/2.6/squid-2.6.STABLE7-RELEASENOTES.html#s12
  • squid-cache.org http://www.squid-cache.org/bugs/show_bug.cgi?id=1857
  • trustix.org http://www.trustix.org/errata/2007/0003/
  • ubuntu.com http://www.ubuntu.com/usn/usn-414-1
  • vupen.com http://www.vupen.com/english/advisories/2007/0199
    Vendor Advisory
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/31523

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.