Squid mkdir-only PUT Request Remote DoS
Medium Nessus Plugin ID 10768
SynopsisThe remote host has an application that is affected by a denial of service vulnerability.
DescriptionA problem exists in the way the remote Squid proxy server handles a special 'mkdir-only' PUT request, and causes denial of service to the proxy server.
An attacker may use this flaw to prevent your LAN users from accessing the web.
SolutionApply the vendor released patch, for squid it is located here: www.squid-cache.org. You can also protect yourself by enabling access lists on your proxy.
*** Note that Nessus solely relied on the version number of the remote
*** proxy to issue this warning