Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Squid < 2.4.STABLE2 mkdir-only PUT Request DoS

Medium

Synopsis

The remote proxy server is affected by a denial of service vulnerability.

Description

The remote Squid caching proxy may be disabled remotely by any user by sending it a malformed 'mkdir-only' PUT request, denying access to legitimate users.

Solution

Upgrade to 2.4.STABLE2, or apply the vendor-supplied patch.