PT-2018-1907 · Squid+5 · Squid Http Caching Proxy+6

Louis Dion-Marcil

Published

2018-01-29

Updated

2024-06-15

CVE-2018-1000027

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Squid HTTP Caching Proxy versions prior to 4.0.23

Description The issue is related to a NULL Pointer Dereference vulnerability in HTTP Response X-Forwarded-For header processing. This can result in Denial of Service to all clients of the proxy. The attack appears to be exploitable via a remote HTTP server responding with an X-Forwarded-For header to certain types of HTTP requests. Additionally, there is an issue with buffer overflow when processing ESI responses or loading intermediate certificate authority certificates, which can also lead to a Denial of Service.

Recommendations For Squid HTTP Caching Proxy versions prior to 4.0.23, update to version 4.0.23 or later to resolve the issue. As a temporary workaround, consider restricting access to the X-Forwarded-For header in HTTP responses until the update is applied.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2018-2314

BDU:2018-01511

CESA-2020_1068

CVE-2018-1000027

DLA-1266-1

DLA-1267-1

DSA-4122-1

OPENSUSE-SU-2024:11403-1

RHSA-2020:1068

RHSA-2020_1068

SUSE-SU-2018:0636-1

SUSE-SU-2018:0752-1

USN-3557-1

USN-4059-2

Affected Products

Alt Linux

Centos

Red Hat

Squid Cache

Squid Http Caching Proxy

Suse

Ubuntu

PT-2018-1907 · Squid+5 · Squid Http Caching Proxy+6

CVE-2018-1000027

Weakness Enumeration

Related Identifiers

Affected Products

References · 77