NASLDB: RHSA-2004-591: squid
General
ID: 15533
Name: RHSA-2004-591: squid
Summary: Check for the version of the squid packages
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS Temporal Vector: –
Port: 0
Family: Red Hat Local Security Checks
Type: Local
Description
An updated squid package that fixes a remote denial of service
vulnerability
is now avaliable.
Squid is a full-featured Web proxy cache.
iDEFENSE reported a flaw in the squid SNMP module. This flaw could allow
an attacker who has the ability to send arbitrary packets to the SNMP port
to restart the server, causing it to drop all open connections. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2004-0918 to this issue.
All users of squid should update to this erratum package, which contains a
backport of the security fix for this vulnerability.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2004-0918
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: 2004/10/05
Patch Release: 2005/02/11
Plugin Release: 2004/10/21
Plugin
Version: 1.15
Filename: redhat-RHSA-2004-591.nasl
Filesize: 2608 bytes
MD5 Hash: aaa8c02882e8aebe1cdc7b8c20b4aa5f
Identification: Host/RedHat/rpm-list
Require Keys: Host/RedHat/rpm-list
Dependencies: "ssh_get_info.nasl"
Copyright: This script is Copyright© 2004-2011 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack