Squid Proxy Failed DNS Lookup Random Error Messages Information Disclosure Vulnerability

Squid Proxy Failed DNS Lookup Random Error Messages Information Disclosure Vulnerability

Squid Proxy is reported prone to an information-disclosure vulnerability. This issue may allow an attacker to gain access to potentially sensitive information.

An attacker can trigger this condition by supplying malformed host names to the proxy. The attacker may use information gathered through exploiting this condition to carry out further attacks against the application or other users.

This vulnerability is reported to affect Squid 2.5, but other versions may be affected as well.