[squid-users] Squid Web Proxy Cache Denial of Service Vulnerabilty

From: Awie <[email protected]>
Date: Mon, 28 Jan 2002 18:22:36 +0800

Hi all,

I just read an article at SECURITY FOCUS web site about Squid Web Proxy
Cache Denial of Service Vulnerability

"A problem exists in the manner which Squid handles requests to make FTP
directories on proxied services. An attacker who makes a specially crafted
request via the Squid proxy will be able to cause a denial of service to the
proxy.

If affected with a denial of service then Squid must be restarted to regain
normal functionality. "

Is it already solved? Is there a patch already?

Please advise.

Thx & rgds,

Awie
Received on Mon Jan 28 2002 - 03:08:57 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:58 MST