The clientProcessRequest() function in src/client_side.c in Squid 2.6 before 2.6.STABLE12 allows remote attackers to cause a denial of service (daemon crash) via crafted TRACE requests that trigger an assertion error.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2007-03-21T18:00:00

Updated: 2024-08-07T12:59:08.952Z

Reserved: 2007-03-21T00:00:00

Link: CVE-2007-1560

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-03-21T18:19:00.000

Modified: 2024-11-21T00:28:37.463

Link: CVE-2007-1560

cve-icon Redhat

Severity : Moderate

Publid Date: 2007-03-20T00:00:00Z

Links: CVE-2007-1560 - Bugzilla