icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Squid < 2.4.STABLE4 Buffer Overflow

High

Synopsis

The remote proxy server is affected by various buffer overflows.

Description

The remote Squid caching proxy, according to its version number, is vulnerable to various buffer overflows. This could allow remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.

Solution

Upgrade to Squid 2.4.STABLE4 or higher.