CVE-2007-0248

Name of the Vulnerable Software and Affected Versions Squid versions prior to 2.6.STABLE7

Description The issue allows remote attackers to cause a denial of service, potentially leading to a disruption in the availability of protected information. This can be achieved by overloading the external acl queue, which triggers an infinite loop in the aclMatchExternal function. The exploitation of this issue can be done remotely.

Recommendations For Squid versions prior to 2.6.STABLE7, update to version 2.6.STABLE7 or later to resolve the issue. As a temporary workaround, consider restricting access to the aclMatchExternal function to minimize the risk of exploitation.