|
Family: Denial of Service --> Category: infos
DoSable squid proxy server Vulnerability Scan
Vulnerability Scan Summary Acertains via ver. if a proxy server is DoSable
Detailed Explanation for this Vulnerability Test
A problem exists in the way the remote Squid proxy server handles a
special 'mkdir-only' PUT request, and causes denial of service to the proxy
server.
A possible hacker may use this flaw to prevent your LAN users from accessing
the web.
Solution: Apply the vendor released patch, for squid it is located here:
www.squid-cache.org. You can also protect yourself by enabling access lists
on your proxy.
*** Note that Nessus solely relied on the version number of the remote
*** proxy to issue this warning
Threat Level: Medium / High
Click HERE for more information and discussions on this network vulnerability scan.
|