Vulnerability Details : CVE-2009-2855

The strListGetItem function in src/HttpHeaderTools.c in Squid 2.7 allows remote attackers to cause a denial of service via a crafted auth header with certain comma delimiters that trigger an infinite loop of calls to the strcspn function.

Vulnerability category: Input validationDenial of service

Published 2009-08-18 21:00:01

Updated 2017-09-19 01:29:20

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2009-2855

Probability of exploitation activity in the next 30 days: 96.50%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-2855

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

CWE ids for CVE-2009-2855

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: [email protected] (Primary)

Vendor statements for CVE-2009-2855

Red Hat 2010-03-31

This issue did not affect the versions of the squid packages, as shipped with Red Hat Enterprise Linux 3 and 4. The issue was addressed in the squid packages as shipped with Red Hat Enterprise Linux 5 via: https://rhn.redhat.com/errata/RHSA-2010-0221.html

References for CVE-2009-2855

Products affected by CVE-2009-2855

Squid-cache » Squid » Version: 2.7 Update Stable4
cpe:2.3:a:squid-cache:squid:2.7:stable4:*:*:*:*:*:*
Matching versions
Squid-cache » Squid » Version: 2.7
cpe:2.3:a:squid-cache:squid:2.7:*:*:*:*:*:*:*
Matching versions
Squid-cache » Squid » Version: 2.7 Update Stable3
cpe:2.3:a:squid-cache:squid:2.7:stable3:*:*:*:*:*:*
Matching versions