Intrusion Prevention

Squid.strHdrAcptLangGetItem.Value.DoS

Description

This indicates an attack attempt to exploit a Denial-of-Service vulnerability in Squid proxy server.
The vulnerability is caused by an error when generating an error page. A remote attacker may be able to exploit this to cause a denial of service condition on the affected system, via a crafted HTTP request.

Affected Products

Squid Project Squid 3.2.x prior to 3.2.9
Squid Project Squid 3.3.x prior to 3.3.3

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.squid-cache.org/Advisories/SQUID-2013_1.txt

CVE References

CVE-2013-1839