CVE-2021-31806

MEDIUM

Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Range Request Processing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-31806. PoCs published by Joshua Rogers, including Metasploit module auxiliary/dos/http/squid_range_dos.

AI-analyzed exploit summary This Metasploit module exploits CVE-2021-31807 (and CVE-2021-31806) to trigger a denial-of-service in Squid Proxy by sending malformed HTTP Range headers. The exploit sends multiple crafted requests to crash the service.

Description

An issue was discovered in Squid before 4.15 and 5.x before 5.0.6. Due to a memory-management bug, it is vulnerable to a Denial of Service attack (against all clients using the proxy) via HTTP Range request processing.

Exploits (1)

metasploit WORKING POC

by Joshua Rogers · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/squid_range_dos.rb

View Code ZIP pw:eip

This Metasploit module exploits CVE-2021-31807 (and CVE-2021-31806) to trigger a denial-of-service in Squid Proxy by sending malformed HTTP Range headers. The exploit sends multiple crafted requests to crash the service.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Squid Proxy 3.0-4.1.4, 5.0.1-5.0.5

No auth needed

Prerequisites: Network access to the Squid Proxy server

MITRE ATT&CK