|
Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2007:012: squid Vulnerability Scan
Vulnerability Scan Summary Check for the version of the squid package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2007:012 (squid).
This update fixes a remotely exploitable denial-of-service
bug in squid that can be triggered by using special ftp://
URLs. (CVE-2007-0247)
Additionally the 10.2 package needed a fix for another DoS
bug (CVE-2007-0248) and for max_user_ip handling in
ntlm_auth.
Solution : http://www.suse.de/security/http://www.novell.com/linux/security/advisories/2007_12_squid.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|