ID de Prueba:	1.3.6.1.4.1.25623.1.0.800473
Categoría:	Denial of Service
Título:	Squid HTCP Packets Processing DoS Vulnerability (SQUID-2010:2)
Resumen:	Squid is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Squid is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: The flaw is due to error in 'htcpHandleTstRequest()' function in 'htcp.c', when processing malformed HTCP (Hypertext Caching Protocol) packets. Vulnerability Impact: Successful exploitation could allow remote attackers to crash an affected server, creating a denial of service condition. Affected Software/OS: Squid version 2.x and 3.0 through 3.0.STABLE23. Solution: Apply the patches from the references or update to version 3.0.STABLE24 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0639 BugTraq ID: 38212 http://www.securityfocus.com/bid/38212 http://lists.fedoraproject.org/pipermail/package-announce/2010-March/037159.html http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035961.html http://bugs.squid-cache.org/show_bug.cgi?id=2858 http://www.squid-cache.org/Versions/v2/2.7/changesets/12600.patch http://www.squid-cache.org/Versions/v3/3.0/changesets/3.0-ADV-2010_2.patch http://osvdb.org/62297 http://www.securitytracker.com/id?1023587 http://secunia.com/advisories/38812 http://www.vupen.com/english/advisories/2010/0371 http://www.vupen.com/english/advisories/2010/0603
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.