VDB
CVE-2010-2951
CVE-2010-2951
PUBLISHED
CVSS 5 MEDIUM
dns_internal.cc in Squid 3.1.6, when IPv6 DNS resolution is not enabled, accesses an invalid socket during an IPv4 TCP DNS query, which allows remote attackers to cause a denial of service (assertion failure and daemon exit) via vectors that trigger an IPv4 DNS response with the TC bit set.
EPSS 55.18% · 98.1th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
55.18%
98.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| squid-cache | squid | 3.1.6 |
| n/a | n/a | n/a |
Timeline
- Oct 12, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
References
- [oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present mailing-list
- [oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present mailing-list
- http://bugs.squid-cache.org/show_bug.cgi?id=3009 url
- [squid-users] 20100824 Squid 3.1.7 is available mailing-list
- https://bugzilla.redhat.com/show_bug.cgi?id=626927 url
- http://bugs.squid-cache.org/show_bug.cgi?id=3021 url
- http://bazaar.launchpad.net/~squid/squid/3.1/revision/10072 url
- http://bugs.gentoo.org/show_bug.cgi?id=334263 url
- [oss-security] 20100824 CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present mailing-list
- [oss-security] 20100825 Re: CVE Request -- Squid v3.1.6 -- DoS (crash) while processing large DNS replies with no IPv6 resolver present mailing-list
- http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10072.patch url
- https://nvd.nist.gov/vuln/detail/CVE-2010-2951 advisory