Description
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to an input-validation bug, it is vulnerable to a Denial of Service attack (against all clients using the proxy). A client sends an HTTP Range request to trigger this.
Remediation
References
Related Vulnerabilities
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.5)
Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335)
MediaWiki Improper Authentication Vulnerability (CVE-2014-2665)
WordPress Plugin Simple Photo Gallery Cross-Site Scripting (1.8.0)
Internet Information Services Other Vulnerability (CVE-1999-1233)