Squid 3.0 up to and including 3.0.STABLE16 and 3.1 up to and including 3.1.0.11 allows remote malicious users to cause a denial of service via malformed requests including (1) "missing or mismatched protocol identifier," (2) missing or negative status value," (3) "missing version," or (4) "missing or invalid status number," related to (a) HttpMsg.cc and (b) HttpReply.cc.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid 3.0 |
||
squid-cache squid 3.1.0.3 |
||
squid-cache squid 3.1.0.4 |
||
squid-cache squid 3.1 |
||
squid-cache squid 3.1.0.1 |
||
squid-cache squid 3.1.0.2 |