Squid < 3.1.23 / 3.2.x < 3.2.6 / 3.3.x < 220.127.116.11 cachemgr.cgi DoS
Medium Nessus Network Monitor Plugin ID 6850
SynopsisThe remote proxy server is vulnerable to a Denial of Service (DoS) attack.
DescriptionSquid versions prior to 3.1.23, 3.2.x prior to 3.2.6, and 3.3.x prior to 18.104.22.168 are potentially affected by a denial of service vulnerability. The included 'cachemgr.cgi' tool reportedly lacks input validation, which could be abused by any client able to access that tool to perform a denial of service attack on the service host.
Note this fix is a result of an incomplete fix for CVE-2012-5643.
SolutionUpgrade to Squid version 3.1.23 / 3.2.6 / 22.214.171.124 or later, or apply the vendor-supplied patch.