Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Squid < 3.1.8 / 3.2.0.2 NULL Pointer Dereference Denial of Service Vulnerability

Medium

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running Squid, a web proxy application. Versions of Squid earlier than 3.1.8 / 3.2.0.2 are potentially affected by a denial of service vulnerability caused by an internal error in its string handling. A remote attacker, exploiting this flaw, could crash the affected service.

Solution

Upgrade to Squid version 3.1.8, 3.2.0.2, or later.