CVE-2020-8517 vulnerability in Squid Cache and Other Products
Published on February 4, 2020

An issue was discovered in Squid before 4.10. Due to incorrect input validation, the NTLM authentication credentials parser in ext_lm_group_acl may write to memory outside the credentials buffer. On systems with memory access protections, this can result in the helper process being terminated unexpectedly. This leads to the Squid process also terminating and a denial of service for all clients using the proxy.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2020-8517

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-8517 are published in these products:

Squid Cache Squid

Canonical Ubuntu Linux

OpenSuse Leap

Exploit Probability

EPSS

0.83%

Percentile

74.26%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-8517 vulnerability in Squid Cache and Other ProductsPublished on February 4, 2020

Products Associated with CVE-2020-8517

Exploit Probability

CVE-2020-8517 vulnerability in Squid Cache and Other Products
Published on February 4, 2020