Squid Cache SNMP Denial of Service Vulnerability

A memory leak exists in the Squid proxy server's SNMP implementation.

It may be possible for remote attackers to cause the process to consume all allowable resources by repeatedly transmitting malformed SNMP messages. If resource limits have not been set on the Squid process, the performance of the entire system may be degraded.

To exploit this vulnerability, the Squid SNMP interface must be enabled and the attacker must be able to send traffic to the SNMP port. SNMP support in Squid is disabled by default.


Privacy Statement
Copyright 2010, SecurityFocus