Patches lacking for over 30 old Squid proxy vulnerabilities

16 October 2023

No patches have been issued for 35 of 55 security vulnerabilities impacting the popular open-source caching and forwarding proxy Squid that were identified two years ago, according to SecurityWeek. Attackers could leverage many of the flaws to trigger crashes, while some could prompt arbitrary code execution against more than 2.5 million internet-exposed Squid proxy instances, said security researcher Joshua Rogers, who discovered and reported the bugs.

Source: SC Magazine

Date:

16 October 2023

Categorie(s):

NEWS

Tag(s):

IT, News, Patches, Squid

Understanding Scattered Spider, and how they perform cloud-centric identity attacks2 May 2024
Dropbox Sign customer data accessed in breach2 May 2024
Florida man gets 6 years behind bars for flogging fake Cisco kit to US military2 May 2024
Patch up – 4 critical bugs in ArubaOS lead to remote code execution2 May 2024
Menlo Security inks cybersecurity partnership with Google Cloud2 May 2024