- Synchronized data.

2018/1xxx/CVE-2018-1172.json

@@ -34,7 +34,7 @@
       "description_data" : [
          {
             "lang" : "eng",
-            "value" : "This vulnerability allows remote attackers to deny service on vulnerable installations of The Squid Software Foundation Squid 3.5.27-20180318. Authentication is not required to exploit this vulnerability. The specific flaw exists within ClientRequestContext::sslBumpAccessCheck(). A crafted request can trigger the dereference of a null pointer. An attacker can leverage this vulnerability to create a denial-of-service condition to users of the system.  Was ZDI-CAN-6088."
+            "value" : "This vulnerability allows remote attackers to deny service on vulnerable installations of The Squid Software Foundation Squid 3.5.27-20180318. Authentication is not required to exploit this vulnerability. The specific flaw exists within ClientRequestContext::sslBumpAccessCheck(). A crafted request can trigger the dereference of a null pointer. An attacker can leverage this vulnerability to create a denial-of-service condition to users of the system. Was ZDI-CAN-6088."
          }
       ]
    },
@@ -53,10 +53,14 @@
    "references" : {
       "reference_data" : [
          {
-            "url" : "http://www.squid-cache.org/Advisories/SQUID-2018_3.txt"
+            "name" : "https://zerodayinitiative.com/advisories/ZDI-18-309",
+            "refsource" : "MISC",
+            "url" : "https://zerodayinitiative.com/advisories/ZDI-18-309"
          },
          {
-            "url" : "https://zerodayinitiative.com/advisories/ZDI-18-309"
+            "name" : "http://www.squid-cache.org/Advisories/SQUID-2018_3.txt",
+            "refsource" : "CONFIRM",
+            "url" : "http://www.squid-cache.org/Advisories/SQUID-2018_3.txt"
          }
       ]
    }