http.cc in Squid 4.x prior to 4.0.7 relies on the HTTP status code after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (assertion failure and daemon exit) via a malformed response.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
squid-cache squid 4.0.1 |
||
squid-cache squid 4.0.3 |
||
squid-cache squid 4.0.2 |
||
squid-cache squid 4.0.6 |
||
squid-cache squid 4.0.5 |
||
squid-cache squid 4.0.4 |