|
Test ID: | 1.3.6.1.4.1.25623.1.0.100774 |
Category: | Buffer overflow |
Title: | Squid 'DNS' Reply Remote Buffer Overflow Vulnerability |
Summary: | Determine if installed Squid version is vulnerable |
Description: | Description: Overview: Squid is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Squid 3.1.6 is vulnerable other versions may also be affected. Solution: Updates are available. Please see the references for details. References: https://www.securityfocus.com/bid/42645 https://bugzilla.redhat.com/show_bug.cgi?id=62692 http://marc.info/?l=squid-users&m=128263555724981&w=2 http://www.squid-cache.org/ CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
Cross-Ref: |
BugTraq ID: 42645 Common Vulnerability Exposure (CVE) ID: CVE-2010-2951 http://www.openwall.com/lists/oss-security/2010/08/24/6 http://www.openwall.com/lists/oss-security/2010/08/24/7 http://www.openwall.com/lists/oss-security/2010/08/25/2 http://www.openwall.com/lists/oss-security/2010/08/25/6 http://marc.info/?l=squid-users&m=128263555724981&w=2 |
Copyright | This script is Copyright (C) 2010 Greenbone Networks GmbH |
This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|