virus logo Intrusion Prevention

Squid.Proxy.Response.Processing.ESICustomParser.DoS

description-logoDescription

This indicates an attack attempt to exploit a Denial Of Service Vulnerability in Squid proxy.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted ESI response. An attacker can exploit this to cause a denial of service condition on the affected machine via a crafted ESI response.

affected-products-logoAffected Products

Squid Project Squid 3.x up to 3.5.27
Squid Project Squid 4.x prior to 4.0.23

Impact logoImpact

Denial of Service: Remote attackers can crash vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor:
http://www.squid-cache.org/Advisories/SQUID-2018_1.txt

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 45505
Created Feb 08, 2018
Updated May 31, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris
Affected App Other