Squid Gopher Proxy Buffer Overflow Vulnerability

Squid is a freely available, open source web proxy software package. It is designed for use on the Unix and Linux platforms.

Multiple vulnerabilities exist in the Squid gopher proxy that could lead to remote code execution. The parsing of gopher URLs by the Squid gopher proxy may result in buffer overflows, and potentially other issues that allow for the execution of code with the privileges of the Squid cache process.


 

Privacy Statement
Copyright 2010, SecurityFocus