Test ID:	1.3.6.1.4.1.25623.1.0.100774
Category:	Buffer overflow
Title:	Squid 'DNS' Reply Remote Buffer Overflow Vulnerability
Summary:	Determine if installed Squid version is vulnerable
Description:	Description: Overview: Squid is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Squid 3.1.6 is vulnerable other versions may also be affected. Solution: Updates are available. Please see the references for details. References: https://www.securityfocus.com/bid/42645 https://bugzilla.redhat.com/show_bug.cgi?id=62692 http://marc.info/?l=squid-users&m=128263555724981&w=2 http://www.squid-cache.org/ CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	BugTraq ID: 42645 Common Vulnerability Exposure (CVE) ID: CVE-2010-2951 http://www.openwall.com/lists/oss-security/2010/08/24/6 http://www.openwall.com/lists/oss-security/2010/08/24/7 http://www.openwall.com/lists/oss-security/2010/08/25/2 http://www.openwall.com/lists/oss-security/2010/08/25/6 http://marc.info/?l=squid-users&m=128263555724981&w=2
Copyright	This script is Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 51984 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: