cpe:/a:pedro_lineu_orso:sarg:2.2.4 CVE-2008-7249 2009-12-30T17:30:00.437-05:00 2010-01-04T12:32:13.907-05:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-12-31T14:48:00.000-05:00 BUGTRAQ 20080302 Squid Analysis Report Generator <= 2.2.3.1 buffer overflow VUPEN ADV-2008-0749 CONFIRM http://sourceforge.net/project/shownotes.php?release_id=581212 Buffer overflow in Squid Analysis Report Generator (Sarg) 2.2.3.1, and probably later, allows user-assisted remote attackers to execute arbitrary code via a long HTTP request method in a crafted access.log file, a different vulnerability than CVE-2008-1167.