Intrusion Prevention

Squid.HTTP.Invalid.Version.DoS

Description

This indicates an attack attempt against a denial-of-service (DoS) vulnerability in Squid.
The vulnerability is caused by an error when the vulnerable software handles an invalid HTTP version field. It allows a remote attacker to cause DoS via sending a crafted HTTP request.

Affected Products

Squid Web Proxy Cache 3.1 4
Squid Web Proxy Cache 3.0
Squid Web Proxy Cache 3.1
Squid Web Proxy Cache 3.0.STABLE7
Squid Web Proxy Cache 3.0.STABLE6
Squid Web Proxy Cache 3.0.STABLE5
Squid Web Proxy Cache 3.0.STABLE4
Squid Web Proxy Cache 3.0.STABLE3
Squid Web Proxy Cache 3.0.STABLE2
Squid Web Proxy Cache 3.0.STABLE12
Squid Web Proxy Cache 3.0.STABLE1
Squid Web Proxy Cache 2.7.STABLE5
Squid Web Proxy Cache 2.7

Impact

Denial of Service: Remote attackers can stop the vulnerable application.

Recommended Actions

Upgrade to Squid version 2.7.STABLE6, 3.0.STABLE13, or 3.1.0.5 :
http://www.squid-cache.org/Download/

CVE References

CVE-2009-0478