HTTP: Squid Proxy ESI Response Processing nullpointer Denial of Service
This signature detects attempts to exploit a known vulnerability against Squid Proxy. A successful attack can result in a denial-of-service condition.
Extended Description
Squid is an open source caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to Input Validation, Premature Release of Resource During Expected Lifetime, and Missing Release of Resource after Effective Lifetime bugs, Squid is vulnerable to Denial of Service attacks by a trusted server against all clients using the proxy. This bug is fixed in the default build configuration of Squid version 6.10.
Affected Products
Squid-cache squid
Short Name
HTTP:DOS:SQUID-ESI-NULL-PT
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2024-45802 Denial ESI Processing Proxy Response Service Squid nullpointer of
Release Date
01/31/2025
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3791
False Positive
Unknown
Vendors
Squid-cache