FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

squid -- denial of service with forged WCCP messages

Affected packages
squid < 2.5.7_6

Details

VuXML ID 5fe7e27a-64cb-11d9-9e1e-c296ac722cb3
Discovery 2005-01-07
Entry 2005-01-12
Modified 2005-01-22

The squid patches page notes:

WCCP_I_SEE_YOU messages contain a 'number of caches' field which should be between 1 and 32. Values outside that range may crash Squid if WCCP is enabled, and if an attacker can spoof UDP packets with the WCCP router's IP address.

References

CVE Name CVE-2005-0095
URL http://www.squid-cache.org/Advisories/SQUID-2005_2.txt
URL http://www.squid-cache.org/bugs/show_bug.cgi?id=1190
URL http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-wccp_denial_of_service