Squid.Proxy.SSL.Bump.Certificate.Validation.Bypass
Description
This indicates an attack attempt to exploit a Certificate Validation Bypass vulnerability in Squid Proxy.
The vulnerability is caused by an improper validation of user supplied data when the vulnerable application handles a maliciously crafted packet. An attacker can exploit this to execute arbitrary code on the affected machine via a crafted packet.
Affected Products
Squid 3.2.x before 3.2.14
Squid 3.3.x before 3.3.14
Squid 3.4.x before 3.4.13
Squid 3.5.x before 3.5.4
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://www.squid-cache.org/Advisories/SQUID-2015_1.txt
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |