Test Kennung:	1.3.6.1.4.1.25623.1.0.800473
Kategorie:	Denial of Service
Titel:	Squid HTCP Packets Processing DoS Vulnerability (SQUID-2010:2)
Zusammenfassung:	Squid is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: Squid is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to error in 'htcpHandleTstRequest()' function in 'htcp.c', when processing malformed HTCP (Hypertext Caching Protocol) packets. Vulnerability Impact: Successful exploitation could allow remote attackers to crash an affected server, creating a denial of service condition. Affected Software/OS: Squid version 2.x and 3.0 through 3.0.STABLE23. Solution: Apply the patches from the references or update to version 3.0.STABLE24 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0639 BugTraq ID: 38212 http://www.securityfocus.com/bid/38212 http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037159.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035961.html http://bugs.squid-cache.org/show_bug.cgi?id=2858 http://www.squid-cache.org/Versions/v2/2.7/changesets/12600.patch http://www.squid-cache.org/Versions/v3/3.0/changesets/3.0-ADV-2010_2.patch http://osvdb.org/62297 http://www.securitytracker.com/id?1023587 http://secunia.com/advisories/38812 http://www.vupen.com/english/advisories/2010/0371 http://www.vupen.com/english/advisories/2010/0603
Copyright	Copyright (C) 2010 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.