CVE-2023-46728
Summary
Squid, a popular caching proxy, has a NULL pointer dereference vulnerability in its Gopher gateway that can lead to a Denial of Service attack. This issue affects all Squid versions prior to 6.0.1, as the Gopher protocol was enabled by default. Gopher support has been removed in version 6.0.1.
IFF Assessment
The vulnerability allows for a Denial of Service attack, which disrupts service availability for legitimate users.
Severity
Defender Context
This vulnerability in Squid's Gopher gateway could allow an attacker to disrupt network services by causing a denial of service. Defenders should ensure Squid instances are updated to version 6.0.1 or later, or implement strict filtering of Gopher URL requests if upgrading is not immediately feasible. Monitoring network traffic for unusual Gopher protocol activity could also be beneficial.