Test ID:	1.3.6.1.4.1.25623.1.0.53043
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:415
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2005:415. Squid is a full-featured Web proxy cache. The version installed is vulnerable to a number of security issues for which updates are available. For a more detailed description of the issues resolved, please visit the referenced security advisory. Users of Squid should upgrade to this updated package, which contains backported patches to correct these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-415.html Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-1999-0710 BugTraq ID: 2059 http://www.securityfocus.com/bid/2059 Bugtraq: 19990725 Redhat 6.0 cachemgr.cgi lameness (Google Search) Debian Security Information: DSA-576 (Google Search) http://www.debian.org/security/2004/dsa-576 http://www.redhat.com/archives/fedora-announce-list/2005-May/msg00025.html http://fedoranews.org/updates/FEDORA--.shtml http://www.redhat.com/support/errata/RHSA-1999-025.html http://www.redhat.com/support/errata/RHSA-2005-489.html XForce ISS Database: http-cgi-cachemgr(2385) https://exchange.xforce.ibmcloud.com/vulnerabilities/2385 Common Vulnerability Exposure (CVE) ID: CVE-2005-0626 12716 http://www.securityfocus.com/bid/12716 FLSA-2006:152809 RHSA-2005:415 http://www.redhat.com/support/errata/RHSA-2005-415.html USN-93-1 https://usn.ubuntu.com/93-1/ http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-setcookie oval:org.mitre.oval:def:11169 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11169 squid-set-cookie-race-condition(19581) https://exchange.xforce.ibmcloud.com/vulnerabilities/19581 Common Vulnerability Exposure (CVE) ID: CVE-2005-0718 BugTraq ID: 13166 http://www.securityfocus.com/bid/13166 Conectiva Linux advisory: CLA-2005:931 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000931 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11562 http://secunia.com/advisories/12508 https://usn.ubuntu.com/111-1/ XForce ISS Database: squid-put-post-dos(19919) https://exchange.xforce.ibmcloud.com/vulnerabilities/19919 Common Vulnerability Exposure (CVE) ID: CVE-2005-1345 CLA-2005:948 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000948 DSA-721 http://www.debian.org/security/2005/dsa-721 http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-acl_error http://www.squid-cache.org/bugs/show_bug.cgi?id=1255 oval:org.mitre.oval:def:10513 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10513 Common Vulnerability Exposure (CVE) ID: CVE-2005-1519 13592 http://www.securityfocus.com/bid/13592 15294 http://secunia.com/advisories/15294 ADV-2005-0521 http://www.vupen.com/english/advisories/2005/0521 DSA-751 http://www.debian.org/security/2005/dsa-751 FEDORA-2005-373 RHSA-2005:489 http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE9-dns_query oval:org.mitre.oval:def:9976 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9976
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.