CVE-2007-0247

Published: Jan 16, 2007Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

squid/src/ftp.c in Squid before 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.

Affected (6)

Products: Squid: Squid

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Squid Squid	Version 2.6.stable1
Squid Squid	Version 2.6.stable2
Squid Squid	Version 2.6.stable3
Squid Squid	Version 2.6.stable4
Squid Squid	Version 2.6.stable5
Squid Squid	Version 2.6.stable6

Related CWEs

References (38)

http://fedoranews.org/cms/node/2442

Source: cve@mitre.org

http://osvdb.org/39839

Source: cve@mitre.org

http://secunia.com/advisories/23767

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23805

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23810

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23837

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23889

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23921

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/23946

Source: cve@mitre.org

Vendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200701-22.xml

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2007:026

Source: cve@mitre.org

http://www.novell.com/linux/security/advisories/2007_12_squid.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/22079

Source: cve@mitre.org

http://www.squid-cache.org/Versions/v2/2.6/squid-2.6.STABLE7-RELEASENOTES.html#s12

Source: cve@mitre.org

http://www.squid-cache.org/bugs/show_bug.cgi?id=1857

Source: cve@mitre.org

http://www.trustix.org/errata/2007/0003/

Source: cve@mitre.org

http://www.ubuntu.com/usn/usn-414-1

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/0199

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/31523

Source: cve@mitre.org

http://fedoranews.org/cms/node/2442

Source: af854a3a-2127-422b-91ae-364da2661108

http://osvdb.org/39839

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/23767

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23805

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23810

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23837

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23889

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23921

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/23946

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.gentoo.org/security/en/glsa/glsa-200701-22.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2007:026

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2007_12_squid.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/22079

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.squid-cache.org/Versions/v2/2.6/squid-2.6.STABLE7-RELEASENOTES.html#s12

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.squid-cache.org/bugs/show_bug.cgi?id=1857

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.trustix.org/errata/2007/0003/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-414-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/0199

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/31523

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.