| VID |
22434 |
| Severity |
30 |
| Port |
8080,3128 |
| Protocol |
TCP |
| Class |
Webproxy |
| Detailed Description |
The relevant host is running a version of Squid caching proxy which is older than 2.6.STABLE7. Squid is a freely available Web Proxy server for Linux and Unix distributions. Squid Web Proxy Cache version 2.6.STABLE6 and earlier versions are vulnerable to multiple denial of service vulnerabilities, caused by multiple errors in the ftpListingFinish() and ftpHtmlifyListEntry() functions. A remote attacker could exploit these vulnerabilities to stop the affected application, thereby denying access to legitimate users.
* Note: This check solely relied on the banner of the remote Squid Web Proxy Cache server to assess this vulnerability, so this might be a false positive.
* References:
http://www.squid-cache.org/Versions/v2/2.6/squid-2.6.STABLE7-RELEASENOTES.html#s12
http://www.frsirt.com/english/advisories/2007/0199
http://secunia.com/advisories/23767/
* Platforms Affected:
Squid Web Proxy Cache version 2.6.STABLE6 and earlier versions
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of Squid (2.6.STABLE7 or later), available from the Squid Web site at http://www.squid-cache.org/
For Ubuntu Linux:
Upgrade to a fixed package version of Squid, as listed in Ubuntu Security Notice USN-414-1 at http://www.ubuntu.com/usn/usn-414-1
For Gentoo Linux:
Upgrade to the fixed version of Squid, as listed in Gentoo Linux Security Announcement GLSA 200701-22 at http://www.gentoo.org/security/en/glsa/glsa-200701-22.xml |
| Related URL |
CVE-2007-0247,CVE-2007-0248 (CVE) |
| Related URL |
22079,22203 (SecurityFocus) |
| Related URL |
31523,31525 (ISS) |
|
