Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:MISC:SQUID-DNS-REPLIES |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Squid DNS Replies Invalid Free |
Release Date |
2013/01/09 |
Update Number |
2223 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Squid DNS Replies Invalid Free
This signature detects attempts to exploit a known vulnerability against Squid while processing certain DNS replies. A successful attack can lead to arbitrary code execution.
Extended Description
Squid proxy caching server is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause an affected application to crash, denying service to legitimate users.
Affected Products
- Debian linux 6.0 amd64
- Debian linux 6.0 arm
- Debian linux 6.0 ia-32
- Debian linux 6.0 ia-64
- Debian linux 6.0 mips
- Debian linux 6.0 powerpc
- Debian linux 6.0 s/390
- Debian linux 6.0 sparc
- Mandriva linux_mandrake 2011
- Mandriva linux_mandrake 2011 x86_64
- Oracle enterprise_linux 6
- Oracle enterprise_linux 6.2
- Red_hat enterprise_linux_server 6
- Red_hat enterprise_linux_workstation 6
- Red_hat fedora 14
- Red_hat fedora 15
- Squid web_proxy_cache 3.1.16
References
- BugTraq: 50449
- CVE: CVE-2011-4096