Skip to main content

Squid Security Restriction Bypass Vulnerability

Last Update Date: 27 Apr 2020 10:01 Release Date: 27 Apr 2020 4793 Views

RISK: Medium Risk

TYPE: Servers - Internet App Servers

TYPE: Internet App Servers

A vulnerability has been identified in Squid, a remote attackers can exploit this vulnerability to trigger security restriction bypass and remote code execution on the targeted system.


Impact

  • Remote Code Execution
  • Security Restriction Bypass

System / Technologies affected

  • Squid 2.x -> 2.7.STABLE9
  • Squid 3.x -> 3.5.28
  • Squid 4.x -> 4.10
  • Squid 5.x -> 5.0.1

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Update to:

  • 4.11
  • 5.0.2

Vulnerability Identifier


Source


Related Link