CVE-2007-1560

Related Files

Gentoo Linux Security Advisory 200703-27

Posted Apr 2, 2007

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory GLSA 200703-27 - Squid incorrectly handles TRACE requests that contain a Max-Forwards header field with value 0 in the clientProcessRequest() function. Versions less than 2.6.12 are affected.

tags | advisory

systems | linux, gentoo

advisories | CVE-2007-1560

SHA-256 | 42d27666ef13f7d2b8258d9fc62f38162ed04427a08651d282213a87b786a40a

Download | Favorite | View

Ubuntu Security Notice 441-1

Posted Mar 27, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 441-1 - A flaw was discovered in Squid's handling of the TRACE request method which could lead to a crash. Remote attackers with access to the Squid server could send malicious TRACE requests, and cause a denial of service.

tags | advisory, remote, denial of service

systems | linux, ubuntu

advisories | CVE-2007-1560

SHA-256 | a91a9bdecd36057f62f2d946c0476466f9fb4b576aff763b68d81031407e2b90

Download | Favorite | View

Mandriva Linux Security Advisory 2007.068

Posted Mar 24, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - Due to an internal error Squid-2.6 is vulnerable to a denial of service attack when processing the TRACE request method. This problem allows any client trusted to use the service to perform a denial of service attack on the Squid service.

tags | advisory, denial of service

systems | linux, mandriva

advisories | CVE-2007-1560

SHA-256 | 462ae1a336df1deaf247df7072ada040b0c6d14b56480b78c4739e9e3625a08a

Download | Favorite | View