 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.66801 |
| Category: | Mandrake Local Security Checks |
| Title: | Mandriva Security Advisory MDVSA-2010:033 (squid) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to squid announced via advisory MDVSA-2010:033. A vulnerability have been discovered and corrected in Squid 2.x, 3.0 through 3.0.STABLE22, and 3.1 through 3.1.0.15, which allows remote attackers to cause a denial of service (assertion failure) via a crafted DNS packet that only contains a header (CVE-2010-0308). This update provides a fix to this vulnerability. Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 4.0, Enterprise Server 5.0, Multi Network Firewall 2.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2010:033 Risk factor : Medium CVSS Score: 4.0 |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-0308 1023520 http://www.securitytracker.com/id?1023520 37522 http://www.securityfocus.com/bid/37522 38451 http://secunia.com/advisories/38451 38455 http://secunia.com/advisories/38455 62044 http://osvdb.org/62044 ADV-2010-0260 http://www.vupen.com/english/advisories/2010/0260 http://events.ccc.de/congress/2009/Fahrplan/attachments/1483_26c3_ipv4_fuckups.pdf http://www.squid-cache.org/Advisories/SQUID-2010_1.txt http://www.squid-cache.org/Versions/v2/HEAD/changesets/12597.patch http://www.squid-cache.org/Versions/v3/3.0/changesets/squid-3.0-9163.patch http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-9853.patch oval:org.mitre.oval:def:11270 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11270 squid-dns-dos(56001) https://exchange.xforce.ibmcloud.com/vulnerabilities/56001 |
| Copyright | Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |