squid -- FTP server response handling denial of service

2005-10-19T00:00:00
ID 1C3142A3-4AB2-11DA-932D-00055D790C25
Type freebsd
Reporter FreeBSD
Modified 2005-10-19T00:00:00

Description

A Secunia Advisory reports:

M.A.Young has reported a vulnerability in Squid, which can be exploited by malicious people to cause a DoS (Denial of Service). The vulnerability is caused due to an error in handling certain FTP server responses. This can be exploited to crash Squid by visiting a malicious FTP server via the proxy.