Unrated severityNVD Advisory· Published Jul 28, 2009· Updated Apr 23, 2026
CVE-2009-2622
CVE-2009-2622
Description
Squid 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 allows remote attackers to cause a denial of service via malformed requests including (1) "missing or mismatched protocol identifier," (2) missing or negative status value," (3) "missing version," or (4) "missing or invalid status number," related to (a) HttpMsg.cc and (b) HttpReply.cc.
Affected products
29cpe:2.3:a:squid-cache:squid:3.0:*:pre1:*:*:*:*:*+ 28 more
- cpe:2.3:a:squid-cache:squid:3.0:*:pre1:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre2:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre3:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre4:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre5:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre6:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:pre7:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:rc1:stable11:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:rc4:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable1:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable10:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable11:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable12:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable13:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable14:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable15:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable2:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable3:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable4:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable5:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable6:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable7:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable8:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.0:*:stable9:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:3.1.0.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- www.squid-cache.org/Versions/v3/3.1/changesets/b9661.patchnvdPatchVendor Advisory
- www.squid-cache.org/Advisories/SQUID-2009_2.txtnvdVendor Advisory
- secunia.com/advisories/36007nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.securityfocus.com/bid/35812nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2009/2013nvd
News mentions
0No linked articles in our index yet.