HTTP: Squid Squoison Host Header Cache Poisoning
This signature detects attempts to exploit a known vulnerability against Squid proxy when configured as a transparent proxy which makes version 3.5.12 vulnerable. Attackers can cause the Squid proxy's cache to become poisoned with the attacker's chosen content.
Extended Description
client_side.cc in Squid before 3.5.18 and 4.x before 4.0.10 does not properly ignore the Host header when absolute-URI is provided, which allows remote attackers to conduct cache-poisoning attacks via an HTTP request.
Affected Products
Squid-cache squid
References
CVE: CVE-2016-4553
Short Name
HTTP:PROXY:SQUID-SQSN-HDR-POISN
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2016-4553 Cache Header Host Poisoning Squid Squoison
Release Date
06/28/2016
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3794
False Positive
Frequently
Vendors
Oracle
Squid-cache
Canonical
CVSS Score
5.0