HTTP: Squid Proxy Cache Update Denial of Service
This signature detects attempts to exploit a known vulnerability against Squid Web Proxy. A successful attack can result in a denial-of-service condition.
Extended Description
Squid is prone to a remote denial-of-service vulnerability because the proxy server fails to perform boundary checks before copying user-supplied data into process buffers. Successfully exploiting this issue allows remote attackers to crash the affected application, denying further service to legitimate users. Attackers may also be able to execute arbitrary code, but this has not been confirmed. This issue affects Squid 2.6.STABLE16 and prior versions. All Squid-3 snapshots and prereleases up to the November 28 snapshot are also vulnerable.
Affected Products
Red_hat enterprise_linux_as
Short Name
HTTP:PROXY:SQUID-CACHE-UPDATE
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2007-6239 Cache Denial Proxy Service Squid Update bid:26687 of
Release Date
10/20/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Occasionally
Vendors
Red_hat
Suse
Gentoo
Squid
Turbolinux
Ubuntu
Mandriva
Debian
CVSS Score
5.0