Short Name |
HTTP:PROXY:SQUID-STRLISTGETITEM |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
Squid strListGetItem Denial of Service |
Release Date |
2010/09/30 |
Update Number |
1783 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Squid Proxy. A successful attack can result in a denial-of-service condition.
Squid is prone to a remote denial-of-service vulnerability because the proxy server fails to properly parse certain external authentication headers that contain comma delimiters. Successfully exploiting this issue allows remote attackers to trigger an infinite loop and consume system resources, denying further service to legitimate users.