Squid 'httpMakeVaryMark()'函数远程拒绝服务漏洞

BUGTRAQ ID: 58319 Squid是一个高效的Web缓存及代理程序。 Squid 3.2.5、3.2.7在函数'httpMakeVaryMark'的实现上存在安全漏洞，成功利用后可允许远程攻击者造成Squid内存异常，触发拒绝服务。 0 Squid 3.2.7 Squid 3.2.5 厂商补丁： Squid ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.squid-cache.org/Advisories/ tytusromekiatomek...

Squid 3.2.5 httpMakeVaryMark() header value DoS, 2.7.Stable9 memory corruption.

httpMakeVaryMark header value 'value' http.cc:603 line Authors: 22733db72ab3ed94b5f8a1ffcde850251fe6f466 c8e74ebd8392fda4788179f9a02bb49337638e7b AKAT-1 Versions: 3.2.5 It takes combination of a 5x requests and responses in less than 10 seconds to crash the parent: Request -- cut -- !/usr/bin/env...

Squid 'httpMakeVaryMark()'函数内存破坏漏洞

BUGTRAQ ID: 58322 Squid是一个高效的Web缓存及代理程序。 Squid 2.7.Stable9在函数'httpMakeVaryMark'的实现上存在安全漏洞，成功利用后可允许远程攻击者在受影响应用的上下文中执行任意代码。 0 Squid 3.2.7 Squid 3.2.5 厂商补丁： Squid ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.squid-cache.org/Advisories/...

Squid - 'httpMakeVaryMark()' Remote Denial of Service

source: https://www.securityfocus.com/bid/58319/info Squid is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to crash the application, resulting in denial-of-service conditions. Squid 3.2.5 is vulnerable; other versions may also be affected. Request -- cut --...

Squid - httpMakeVaryMark() Remote Denial of Service

Squid - httpMakeVaryMark Remote Denial of Service source: https://www.securityfocus.com/bid/58319/info Squid is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to crash the application, resulting in denial-of-service conditions. Squid 3.2.5 is vulnerable; other...