First published: Tue Jul 28 2009(Updated: )
Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote attackers to cause a denial of service via malformed requests including (1) "missing or mismatched protocol identifier," (2) missing or negative status value," (3) "missing version," or (4) "missing or invalid status number," related to (a) HttpMsg.cc and (b) HttpReply.cc.
Credit: cret@cert.org
Affected Software | Affected Version | How to fix |
---|---|---|
Squid-Cache Squid | =3.0-rc4 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.1.0.3 | |
Squid-Cache Squid | =3.1.0.1 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0-rc1 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.1.0.2 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.1.0.4 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.1 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 | |
Squid-Cache Squid | =3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.