Signature Detail
Short Name |
HTTP:PROXY:SQUID-NULL-PTR |
|---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Squid Proxy String Processing NULL Pointer Dereference |
Release Date |
2011/07/18 |
Update Number |
1956 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Squid Proxy String Processing NULL Pointer Dereference
This signature detects attempts to exploit a known flaw in the Squid HTTP proxy. A Denial of Service vulnerability exists in Squid Proxy Cache component. The vulnerability is due to an input validation error while parsing crafted strings sent in a request. The vulnerable code does not validate if a string could be NULL before performing a comparison operation. As a result of this, a NULL pointer dereference occurs that leads to a Denial of Service condition.
Extended Description
Squid is prone to a remote denial-of-service vulnerability caused by a NULL pointer dereference. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users. Due to the nature of the issue, code execution may be possible; however, it has not been confirmed. The issue affects the following versions: Squid 3.0 to 3.0.STABLE25 Squid 3.1 to 3.1.7 Squid 3.2 to 3.2.0.1
Affected Products
- Debian Linux 5.0
- Debian Linux 5.0 Alpha
- Debian Linux 5.0 Amd64
- Debian Linux 5.0 Arm
- Debian Linux 5.0 Armel
- Debian Linux 5.0 Hppa
- Debian Linux 5.0 Ia-32
- Debian Linux 5.0 Ia-64
- Debian Linux 5.0 M68k
- Debian Linux 5.0 Mips
- Debian Linux 5.0 Mipsel
- Debian Linux 5.0 Powerpc
- Debian Linux 5.0 S/390
- Debian Linux 5.0 Sparc
- Gentoo Linux
- Mandriva Enterprise Server 5
- Mandriva Enterprise Server 5 X86 64
- Mandriva Linux Mandrake 2009.0
- Mandriva Linux Mandrake 2009.0 X86 64
- Mandriva Linux Mandrake 2009.1
- Mandriva Linux Mandrake 2009.1 X86 64
- Mandriva Linux Mandrake 2010.0
- Mandriva Linux Mandrake 2010.0 X86 64
- Mandriva Linux Mandrake 2010.1
- Mandriva Linux Mandrake 2010.1 X86 64
- Red Hat Enterprise Linux Server 6
- Red Hat Enterprise Linux Workstation 6
- Red Hat Fedora 12
- Red Hat Fedora 13
- Red Hat Fedora 14
- Squid Web Proxy Cache 3.0.0
- Squid Web Proxy Cache 3.0.0 PRE1
- Squid Web Proxy Cache 3.0.0 PRE2
- Squid Web Proxy Cache 3.0.0 PRE3
- Squid Web Proxy Cache 3.0.STABLE1
- Squid Web Proxy Cache 3.0.STABLE12
- Squid Web Proxy Cache 3.0.STABLE13
- Squid Web Proxy Cache 3.0.STABLE16
- Squid Web Proxy Cache 3.0.STABLE17
- Squid Web Proxy Cache 3.0.STABLE2
- Squid Web Proxy Cache 3.0.STABLE21
- Squid Web Proxy Cache 3.0.STABLE22
- Squid Web Proxy Cache 3.0.STABLE23
- Squid Web Proxy Cache 3.0.STABLE24
- Squid Web Proxy Cache 3.0.STABLE25
- Squid Web Proxy Cache 3.0.STABLE3
- Squid Web Proxy Cache 3.0.STABLE4
- Squid Web Proxy Cache 3.0.STABLE5
- Squid Web Proxy Cache 3.0.STABLE6
- Squid Web Proxy Cache 3.0.STABLE7
- Squid Web Proxy Cache 3.1
- Squid Web Proxy Cache 3.1.0.11
- Squid Web Proxy Cache 3.1.0.12
- Squid Web Proxy Cache 3.1.0.15
- Squid Web Proxy Cache 3.1.0.16
- Squid Web Proxy Cache 3.1.0.4
- Squid Web Proxy Cache 3.1.0.5
- Squid Web Proxy Cache 3.1.6
- Squid Web Proxy Cache 3.1.7
- Squid Web Proxy Cache 3.2
- Squid Web Proxy Cache 3.2.0.1
- SuSE openSUSE 11.1
- SuSE openSUSE 11.2
- SuSE openSUSE 11.3
References
- BugTraq: 42982
- CVE: CVE-2010-3072
- URL: http://www.squid-cache.org/Advisories/SQUID-2010_3.txt