Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Squid 3.x < 3.1.8 / 3.2.x < 3.2.0.2 NULL Pointer Dereference DoS

Medium

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running Squid, a web proxy application.

Versions of Squid earlier than 3.1.8 / 3.2.0.2 are potentially affected by a denial of service vulnerability caused by an internal error in its string handling. A remote attacker, exploiting this flaw, could crash the affected service.

Solution

Upgrade to Squid version 3.1.8, 3.2.0.2, or later.