Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:PROXY:SQUID-NULL-PTR |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Squid Proxy String Processing NULL Pointer Dereference |
Release Date |
2011/07/18 |
Update Number |
1956 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Squid Proxy String Processing NULL Pointer Dereference
This signature detects attempts to exploit a known flaw in the Squid HTTP proxy. A Denial of Service vulnerability exists in Squid Proxy Cache component. The vulnerability is due to an input validation error while parsing crafted strings sent in a request. The vulnerable code does not validate if a string could be NULL before performing a comparison operation. As a result of this, a NULL pointer dereference occurs that leads to a Denial of Service condition.
Extended Description
Squid is prone to a remote denial-of-service vulnerability caused by a NULL pointer dereference. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users. Due to the nature of the issue, code execution may be possible; however, it has not been confirmed. The issue affects the following versions: Squid 3.0 to 3.0.STABLE25 Squid 3.1 to 3.1.7 Squid 3.2 to 3.2.0.1
Affected Products
- Debian linux 5.0
- Debian linux 5.0 Alpha
- Debian linux 5.0 Amd64
- Debian linux 5.0 Arm
- Debian linux 5.0 Armel
- Debian linux 5.0 Hppa
- Debian linux 5.0 Ia-32
- Debian linux 5.0 Ia-64
- Debian linux 5.0 M68k
- Debian linux 5.0 Mips
- Debian linux 5.0 Mipsel
- Debian linux 5.0 Powerpc
- Debian linux 5.0 S/390
- Debian linux 5.0 Sparc
- Gentoo linux
- Mandriva enterprise_server 5
- Mandriva enterprise_server 5 X86 64
- Mandriva linux_mandrake 2009.0
- Mandriva linux_mandrake 2009.0 X86 64
- Mandriva linux_mandrake 2009.1
- Mandriva linux_mandrake 2009.1 X86 64
- Mandriva linux_mandrake 2010.0
- Mandriva linux_mandrake 2010.0 X86 64
- Mandriva linux_mandrake 2010.1
- Mandriva linux_mandrake 2010.1 X86 64
- Red_hat enterprise_linux_server 6
- Red_hat enterprise_linux_workstation 6
- Red_hat fedora 12
- Red_hat fedora 13
- Red_hat fedora 14
- Squid web_proxy_cache 3.0.0
- Squid web_proxy_cache 3.0.0 PRE1
- Squid web_proxy_cache 3.0.0 PRE2
- Squid web_proxy_cache 3.0.0 PRE3
- Squid web_proxy_cache 3.0.STABLE1
- Squid web_proxy_cache 3.0.STABLE12
- Squid web_proxy_cache 3.0.STABLE13
- Squid web_proxy_cache 3.0.STABLE16
- Squid web_proxy_cache 3.0.STABLE17
- Squid web_proxy_cache 3.0.STABLE2
- Squid web_proxy_cache 3.0.STABLE21
- Squid web_proxy_cache 3.0.STABLE22
- Squid web_proxy_cache 3.0.STABLE23
- Squid web_proxy_cache 3.0.STABLE24
- Squid web_proxy_cache 3.0.STABLE25
- Squid web_proxy_cache 3.0.STABLE3
- Squid web_proxy_cache 3.0.STABLE4
- Squid web_proxy_cache 3.0.STABLE5
- Squid web_proxy_cache 3.0.STABLE6
- Squid web_proxy_cache 3.0.STABLE7
- Squid web_proxy_cache 3.1
- Squid web_proxy_cache 3.1.0.11
- Squid web_proxy_cache 3.1.0.12
- Squid web_proxy_cache 3.1.0.15
- Squid web_proxy_cache 3.1.0.16
- Squid web_proxy_cache 3.1.0.4
- Squid web_proxy_cache 3.1.0.5
- Squid web_proxy_cache 3.1.6
- Squid web_proxy_cache 3.1.7
- Squid web_proxy_cache 3.2
- Squid web_proxy_cache 3.2.0.1
- Suse opensuse 11.1
- Suse opensuse 11.2
- Suse opensuse 11.3
References
- BugTraq: 42982
- CVE: CVE-2010-3072
- URL: http://www.squid-cache.org/Advisories/SQUID-2010_3.txt