icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Squid < 2.4.STABLE2 mkdir-only PUT Request DoS

Medium

Synopsis

The remote proxy server is affected by a denial of service vulnerability.

Description

The remote Squid caching proxy may be disabled remotely by any user by sending it a malformed 'mkdir-only' PUT request, denying access to legitimate users.

Solution

Upgrade to 2.4.STABLE2, or apply the vendor-supplied patch.