ID de Prueba:	1.3.6.1.4.1.25623.1.0.142628
Categoría:	Denial of Service
Título:	Squid Security Update Advisory SQUID-2018:5
Resumen:	Squid is prone to a denial of service vulnerability due to a memory leak; in the SNMP query rejection code.
Descripción:	Summary: Squid is prone to a denial of service vulnerability due to a memory leak in the SNMP query rejection code. Vulnerability Insight: This problem allows a remote attacker to consume all memory available to the Squid process, causing it to crash. In environments where per-process memory restrictions are not enforced strictly, or configured to large values this may also affect other processes operating on the same machine. Leading to a much worse denial of service situation. This problem is limited to Squid built with SNMP support and receiving SNMP traffic. Affected Software/OS: Squid versions 3.2.0.10 - 3.5.28, 4.x - 4.3. Solution: Update to version 4.4 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2018-19132 http://www.squid-cache.org/Advisories/SQUID-2018_5.txt http://www.squid-cache.org/Versions/v5/changesets/squid-5-644131ff1e00c1895d77561f561d29c104ba6b11.patch https://github.com/squid-cache/squid/pull/313 https://lists.debian.org/debian-lts-announce/2018/11/msg00032.html https://lists.debian.org/debian-lts-announce/2020/07/msg00009.html https://usn.ubuntu.com/4059-1/
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.