Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Squid 3.5.x < 3.5.14 DoS

Medium

Synopsis

The remote proxy server is affected by a Denial of Server (DoS) attack vector.

Description

Versions of Squid 3.5.x prior to 3.5.14 are affected by a flaw in the 'FwdState::connectedToPeer()' function in 'FwdState.cc' that is triggered as server connection errors are handled improperly. This may allow a remote attacker to cause a denial of service when connecting to TLS or SSL servers.

Solution

Either upgrade to Squid version 3.5.14 or later, or apply the vendor-supplied patch.