Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.100797
Category:Web application abuses
Title:Apache Traffic Server Remote DNS Cache Poisoning Vulnerability
Summary:Apache Traffic Server is prone to a remote DNS cache-poisoning; vulnerability.
Description:Summary:
Apache Traffic Server is prone to a remote DNS cache-poisoning
vulnerability.

Vulnerability Impact:
An attacker can exploit this issue to divert data from a legitimate
site to an attacker-specified site.

Successful exploits will allow the attacker to manipulate cache data, potentially facilitating
man-in-the-middle, site-impersonation, or denial-of-service attacks.

Affected Software/OS:
Versions prior to Apache Traffic Server 2.0.1.

Solution:
Updates are available. Please see the references for more information.

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-Ref: BugTraq ID: 43111
Common Vulnerability Exposure (CVE) ID: CVE-2010-2952
http://www.securityfocus.com/bid/43111
Bugtraq: 20100908 Medium security flaw in Apache Traffic Server (Google Search)
http://www.securityfocus.com/archive/1/513598/100/0/threaded
http://www.nth-dimension.org.uk/pub/NDSA20100830.txt.asc
http://securitytracker.com/id?1024417
http://secunia.com/advisories/41356
XForce ISS Database: apache-traffic-cache-poisoing(61721)
https://exchange.xforce.ibmcloud.com/vulnerabilities/61721
CopyrightThis script is Copyright (C) 2010 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.