HTTP: Squid Proxy TRACE Request Remote Denial of Service
This signature detects attempts to exploit a known vulnerability against the Squid proxy server. Attackers can send a specially crafted "TRACE" request that can cause the process to restart.
Extended Description
Squid is prone to a remote denial-of-service vulnerability because the proxy server fails to handle certain TRACE requests. Successfully exploiting this issue allows remote attackers to crash the affected application, denying futher service to legitimate users. This issue affects version 2.6.
Affected Products
Turbolinux appliance_server
Short Name
HTTP:PROXY:SQUID-TRACE
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2007-1560 Denial Proxy Remote Request Service Squid TRACE bid:23085 of
Release Date
10/06/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3339
False Positive
Unknown
Vendors
Red_hat
Gentoo
Squid
Turbolinux
Ubuntu
Mandriva
CVSS Score
5.0