NASLDB: Debian DSA-2040-1 : squidguard - buffer overflow
General
ID: 46213
Name: Debian DSA-2040-1 : squidguard – buffer overflow
Summary: Checks dpkg output for the updated package
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS Temporal Vector: –
Port: 0
Family: Debian Local Security Checks
Type: Local
Description
It was discovered that in squidguard, a URL redirector/filter/ACL
plugin for squid, several problems in src/sgLog.c and src/sgDiv.c
allow remote users to either :
– cause a denial of service, by requesting long URLs
containing many slashes; this forces the daemon into
emergency mode, where it does not process requests
anymore.
– bypass rules by requesting URLs whose length is close to
predefined buffer limits, in this case 2048 for
squidguard and 4096 or 8192 for squid (depending on its
version).
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2009-3700
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2010/05/02
Plugin Release: 2010/05/03
Plugin
Version: 1.4
Filename: debian_DSA-2040.nasl
Filesize: 3175 bytes
MD5 Hash: ca8e7e727e1ced3cc03af963b0ce063b
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"
Copyright: This script is© 2010-2012 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack