Friday Squid Blogging: Vulnerabilities in Squid Server

2019-08-23 23:19

It's always nice when I can combine squid and security: Multiple versions of the Squid web proxy cache server built with Basic Authentication features are currently vulnerable to code execution and denial-of-service (DoS) attacks triggered by the exploitation of a heap buffer overflow security flaw. The vulnerability present in Squid 4.0.23 through 4.7 is caused by incorrect buffer management which...

News URL

https://www.schneier.com/blog/archives/2019/08/friday_squid_bl_694.html

#server #vulnerabilities