|
|
Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:008: squid Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the squid package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:008 (squid).
Squid is an Open Source web proxy.
A remote attacker was potentially able to crash the Squid web proxy
if the log_fqdn option was set to 'on' and the DNS replies were
manipulated.
This is tracked by the Mitre CVE ID CVE-2005-0446.
This update also fixes a defect in the last security update patch
(CVE-2005-0241).
Solution : http://www.suse.de/security/advisories/2005_08_squid.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
