This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote proxy server is susceptible to a denial of service attack.
The version of the Squid proxy caching server installed on the remote
host may abort when parsing requests with an invalid HTTP version. A
remote attacker may be able to leverage this issue to crash the
application, thereby denying service to legitimate users.
Note that successful exploitation of this issue requires that Squid
was not built with the 'NODEBUG' define.
See also :
Either apply the appropriate patches referenced in the project's
advisory above or upgrade to Squid version 2.7.STABLE6 / 3.0.STABLE13
/ 18.104.22.168 or later.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.1
Public Exploit Available : true
Nessus Plugin ID: 35620 ()
Bugtraq ID: 33604
CVE ID: CVE-2009-0478
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.