Summary
A problem exists in the way the remote Squid proxy server handles a special 'mkdir-only' PUT request, and causes denial of service to the proxy server.
An attacker may use this flaw to prevent your LAN users from accessing the web.
Solution
Apply the vendor released patch, for squid it is located here:
www.squid-cache.org. You can also protect yourself by enabling access lists on your proxy.
Severity
Classification
-
CVE CVE-2001-0843 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apple Safari WebKit Property Memory Leak Remote DoS Vulnerability
- Comodo Internet Security Denial of Service Vulnerability July 13
- Apple Safari Denial of Service Vulnerability (Win) - Apr09
- chm2pdf Insecure Temporary File Creation or DoS Vulnerability
- Apache Traffic Server HTTP Host Header Denial of Service Vulnerability