_top_ — Edb-id-44781

When Squid Proxy receives a request for a website, it asks a DNS server, "Who is this?" The DNS server replies. But sometimes, bad people run bad DNS servers. They don't play by the rules. They might send back a massive list of addresses when Squid only asked for one.

If you're unable to find the information, consider contacting the support team or the person managing the system where this ID originates. They should be able to provide you with the necessary details. edb-id-44781

The vulnerability stems from a lack of proper input validation in the router's web management interface. By sending a specially crafted HTTP request to a specific endpoint, an attacker can overflow a memory buffer on the stack. Because these routers often operate with high-level privileges (typically root), a successful buffer overflow can lead to complete device compromise. TP-Link TL-WR940N and TL-WR740N. Vulnerability Type: Stack-based Buffer Overflow. When Squid Proxy receives a request for a

While the requirement for administrator credentials lowers the risk for random Internet-wide attacks, it remains a significant threat in several scenarios: They might send back a massive list of