| VID |
22409 |
| Severity |
30 |
| Port |
8080, ... |
| Protocol |
TCP |
| Class |
Proxy |
| Detailed Description |
The relevant host is running a version of DeleGate Proxy server which is older than 8.11.6 or 9.0.6. DeleGate is a multi-application proxy server for various operating systems. DeleGate versions prior to 8.11.6 and 9.0.6 are vulnerable to a denial of service attack, caused by a vulnerability in the implementation of the Domain Name System (DNS) protocol that does not properly handle malformed response messages. By injecting malformed DNS responses to the queries sent by the remote application, a remote attacker could crash the affected service.
* Note: This check solely relied on the banner of the remote Proxy server to assess this vulnerability, so this might be a False Positive.
* References:
http://www.kb.cert.org/vuls/id/955777
http://www.frsirt.com/english/advisories/2006/1506
http://www.niscc.gov.uk/niscc/docs/br-20060425-00311.html?lang=en
* Platforms Affected:
Yutaka Sato, DeleGate versions prior to 8.11.6
Yutaka Sato, DeleGate versions 9.x prior to 9.0.6
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of DeleGate (8.11.6 or 9.0.6 or later), available from the DeleGate Download site at http://www.delegate.org/delegate/download/ |
| Related URL |
CVE-2006-2072 (CVE) |
| Related URL |
17691 (SecurityFocus) |
| Related URL |
26081 (ISS) |
|
