CVE-2010-3072
published 2010-09-20CVE-2010-3072: The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL…
PriorityP338medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
64.24%
99.1th percentile
The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.
Affected
54 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
| squid-cache | squid | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →The vulnerability is triggered via a crafted HTTP request sent to Squid proxy that causes a NULL pointer dereference in string-comparison functions within String.cci. Monitor Squid daemon for unexpected crashes (NULL pointer dereference) originating from remote client requests. ↗
- →The vulnerable code path resides in String.cci (string-comparison functions). Focus code-level or patch-diff analysis on this file in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2. ↗
- ·Only Squid 3.x (before 3.1.8) and 3.2.x (before 3.2.0.2) are affected. Squid as shipped with Red Hat Enterprise Linux 3, 4, and 5 is NOT affected; detection efforts should focus on RHEL 6 and Fedora deployments running vulnerable versions. ↗
- ·The attacker must be a 'remote, trusted client', implying the exploit vector may be limited to clients that Squid considers trusted (e.g., within allowed ACLs). Detection rules should account for this trust boundary. ↗
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_debian5.0LOW
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
Squid: Denial of service due internal error in string handling (SQUID-2010:3)
vendor_redhat·2010-09-03·CVSS 5.0
CVE-2010-3072 [MEDIUM] Squid: Denial of service due internal error in string handling (SQUID-2010:3)
Squid: Denial of service due internal error in string handling (SQUID-2010:3)
The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.
Statement: This issue did not affect the version of Squid as shipped with Red Hat Enterprise Linux 3, 4, or 5. It was corrected in Red Hat Enterprise Linux 6 via RHSA-2011:0545.
Package: squid (Red Hat Enterprise Linux 4) - Not affected
Package: squid (Red Hat Enterprise Linux 5) - Not affected
Debian
CVE-2010-3072: squid - The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2....
vendor_debian·2010·CVSS 5.0
CVE-2010-3072 [MEDIUM] CVE-2010-3072: squid - The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2....
The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
GHSA
GHSA-744h-wcjj-gwrf: The string-comparison functions in String
ghsa_unreviewed·2022-05-17
CVE-2010-3072 [MEDIUM] GHSA-744h-wcjj-gwrf: The string-comparison functions in String
The string-comparison functions in String.cci in Squid 3.x before 3.1.8 and 3.2.x before 3.2.0.2 allow remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3)
bugzilla·2010-09-05·CVSS 5.0
CVE-2010-3072 [MEDIUM] CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3)
CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3)
A denial of service flaw was found in the way Squid proxy caching
server internally processed NULL buffers. A remote, trusted client
could use this flaw to cause squid daemon crash (dereference NULL pointer)
when processing specially-crafted request.
References:
[1] http://www.squid-cache.org/Advisories/SQUID-2010_3.txt
Upstream patch (against Squid v3.0):
[2] http://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9189.patch
Upstream patch (against Squid v3.1):
[3] http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10090.patch
Credit:
The vulnerability was discovered by Phil Oester.
Discussion:
This issue affects the versions of the squid package, as shipped with
Fedora
Bugzilla
CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3) [fedora-all]
bugzilla·2010-09-05·CVSS 5.0
CVE-2010-3072 [MEDIUM] CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3) [fedora-all]
CVE-2010-3072 Squid: Denial of service due internal error in string handling (SQUID-2010:3) [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=630444
Please not
http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047787.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047820.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://secunia.com/advisories/41298http://secunia.com/advisories/41477http://secunia.com/advisories/41534http://www.debian.org/security/2010/dsa-2111http://www.openwall.com/lists/oss-security/2010/09/05/2http://www.openwall.com/lists/oss-security/2010/09/07/7http://www.securityfocus.com/bid/42982http://www.squid-cache.org/Advisories/SQUID-2010_3.txthttp://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9189.patchhttp://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10090.patchhttp://www.vupen.com/english/advisories/2010/2433https://bugzilla.redhat.com/show_bug.cgi?id=630444http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047787.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-September/047820.htmlhttp://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlhttp://secunia.com/advisories/41298http://secunia.com/advisories/41477http://secunia.com/advisories/41534http://www.debian.org/security/2010/dsa-2111http://www.openwall.com/lists/oss-security/2010/09/05/2http://www.openwall.com/lists/oss-security/2010/09/07/7http://www.securityfocus.com/bid/42982http://www.squid-cache.org/Advisories/SQUID-2010_3.txthttp://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9189.patchhttp://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10090.patchhttp://www.vupen.com/english/advisories/2010/2433https://bugzilla.redhat.com/show_bug.cgi?id=630444
2010-09-20
Published