Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:PROXY:SQUID-WCCP-DOS |
|---|---|
Severity |
Minor |
Recommended |
No |
Category |
APP |
Keywords |
SQUID WCCP Message Denial of Service |
Release Date |
2005/07/25 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: SQUID WCCP Message Denial of Service
This signature detects invalid WCCP "I_SEE_YOU" messages sent to a Squid proxy server. A malicious user can send an invalid WCC message and cause the Squid process to crash.
Extended Description
A remote denial-of-service vulnerability affects the Web Cache Communication Protocol (WCCP) functionality of Squid Proxy. This issue is due to the application's failure to handle unexpected network data. A remote attacker may leverage this issue to crash the affected Squid Proxy, denying service to legitimate users. UPDATE: This issue was thought to result from a call to the 'recvfrom()' function. This has turned out to be incorrect; the buffer overflow from the call to 'recvfrom()' has been determined to be a new vulnerability (BID 12432).
Affected Products
- Astaro security_linux 2.0.0 16
- Astaro security_linux 2.0.0 23
- Astaro security_linux 2.0.0 24
- Astaro security_linux 2.0.0 25
- Astaro security_linux 2.0.0 26
- Astaro security_linux 2.0.0 27
- Astaro security_linux 2.0.0 30
- Astaro security_linux 3.2.0 00
- Astaro security_linux 3.2.0 10
- Astaro security_linux 3.2.0 11
- Astaro security_linux 3.2.0 12
- Astaro security_linux 3.2.0 15
- Astaro security_linux 3.2.0 16
- Astaro security_linux 3.217.0
- Astaro security_linux 4.0.0 08
- Astaro security_linux 4.0.0 16
- Conectiva linux 10.0.0
- Conectiva linux 9.0.0
- Debian linux 3.0.0 Alpha
- Debian linux 3.0.0 Arm
- Debian linux 3.0.0 Hppa
- Debian linux 3.0.0 Ia-32
- Debian linux 3.0.0 Ia-64
- Debian linux 3.0.0 M68k
- Debian linux 3.0.0 Mips
- Debian linux 3.0.0 Mipsel
- Debian linux 3.0.0 Ppc
- Debian linux 3.0.0 S/390
- Debian linux 3.0.0 Sparc
- Red_hat fedora Core1
- Red_hat fedora Core2
- Red_hat linux 7.3.0 I386
- Red_hat linux 9.0.0 I386
- Sgi propack 3.0.0
- Squid web_proxy_cache 2.0.0 PATCH2
- Squid web_proxy_cache 2.1.0 PATCH2
- Squid web_proxy_cache 2.3.0 .STABLE4
- Squid web_proxy_cache 2.3.0 .STABLE5
- Squid web_proxy_cache 2.4.0
- Squid web_proxy_cache 2.4.0 .STABLE2
- Squid web_proxy_cache 2.4.0 .STABLE6
- Squid web_proxy_cache 2.4.0 .STABLE7
- Squid web_proxy_cache 2.5.0 .STABLE1
- Squid web_proxy_cache 2.5.0 .STABLE3
- Squid web_proxy_cache 2.5.0 .STABLE4
- Squid web_proxy_cache 2.5.0 .STABLE5
- Squid web_proxy_cache 2.5.0 .STABLE6
- Squid web_proxy_cache 2.5.0 .STABLE7
- Suse linux 8.0.0
- Suse linux 8.0.0 i386
- Suse linux 8.1.0
- Suse linux_personal 8.2.0
- Suse linux_personal 9.0.0
- Suse linux_personal 9.0.0 X86 64
- Suse linux_personal 9.1.0
- Suse linux_personal 9.2.0
- Trustix secure_enterprise_linux 2.0.0
- Trustix secure_linux 1.5.0
- Trustix secure_linux 2.1.0
- Trustix secure_linux 2.2.0
- Ubuntu ubuntu_linux 4.1.0 Ia32
- Ubuntu ubuntu_linux 4.1.0 Ia64
- Ubuntu ubuntu_linux 4.1.0 Ppc
References