Signature Detail

HTTP: Invalid Port Value in Host Header

This signature detects invalid values for the optional port value in an HTTP Host: header. There are several products vulnerable to such malformed submissions. A successful attempt could result in arbitrary code execution or denial-of-service condition.

Extended Description

client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header.

Affected Products

• Opensuse opensuse 12.3
• Squid-cache squid 3.2.0.1
• Squid-cache squid 3.2.0.10
• Squid-cache squid 3.2.0.11
• Squid-cache squid 3.2.0.12
• Squid-cache squid 3.2.0.13
• Squid-cache squid 3.2.0.14
• Squid-cache squid 3.2.0.15
• Squid-cache squid 3.2.0.16
• Squid-cache squid 3.2.0.17
• Squid-cache squid 3.2.0.18
• Squid-cache squid 3.2.0.19
• Squid-cache squid 3.2.0.2
• Squid-cache squid 3.2.0.3
• Squid-cache squid 3.2.0.4
• Squid-cache squid 3.2.0.5
• Squid-cache squid 3.2.0.6
• Squid-cache squid 3.2.0.7
• Squid-cache squid 3.2.0.8
• Squid-cache squid 3.2.0.9
• Squid-cache squid 3.2.1
• Squid-cache squid 3.2.10
• Squid-cache squid 3.2.11
• Squid-cache squid 3.2.12
• Squid-cache squid 3.2.2
• Squid-cache squid 3.2.3
• Squid-cache squid 3.2.4
• Squid-cache squid 3.2.5
• Squid-cache squid 3.2.6
• Squid-cache squid 3.2.7
• Squid-cache squid 3.2.8
• Squid-cache squid 3.2.9
• Squid-cache squid 3.3.0
• Squid-cache squid 3.3.0.2
• Squid-cache squid 3.3.0.3
• Squid-cache squid 3.3.1
• Squid-cache squid 3.3.2
• Squid-cache squid 3.3.3
• Squid-cache squid 3.3.4
• Squid-cache squid 3.3.5
• Squid-cache squid 3.3.6
• Squid-cache squid 3.3.7

References

• CVE: CVE-2013-4123