You are here

CVE-2013-4123

Vincent (CVE) Danen's picture
client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header.

Details Source

Mitre

Public Date

2013-07-13 00:00:00

Impact

Moderate

Bugzilla

CVE-2013-4123 squid: Denial of service when processing specially-crafted HTTP requests (SQUID-2013:3)

Bugzilla ID

984 632

CVSS Status

draft

Base Score

5.00

Base Metrics

AV:N/AC:L/Au:N/C:N/I:N/A:P

External References

http://www.squid-cache.org/Advisories/SQUID-2013_3.txt

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 7 squid Not affected
Red Hat Enterprise Linux 6 squid Not affected
Red Hat Enterprise Linux 5 squid Not affected