The Squid web proxy cache may be vulnerable to oversized HTTP reply headers.
Squid functions as a web proxy and cache application for a number of protocols, including the hypertext transfer protocol (HTTP). A defect in the Squid HTTP handling prevents oversized reply headers relating to an HTTP protocol mismatch from being handled properly.
The complete impact of this vulnerability is not yet known. This vulnerability is platform independent.
Apply an update
Administrators should obtain an updated version of Squid from their vendor.
Thanks to Team Squid for reporting this vulnerability, who in turn credit Marc Elsen for finding the flaw.
This document was written by Ken MacInnis based primarily on information provided by Team Squid.
|Date First Published:||2005-02-04|
|Date Last Updated:||2005-02-07 21:18 UTC|