This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing a security update.
Numerous security problems were fixed in squid-2.4.STABLE7. This
releases has several bugfixes to the Gopher client to correct some
security issues. Security fixes to how squid parses FTP directory
listings into HTML have been implemented. A security fix to how squid
forwards proxy authentication credentials has been applied, as well as
the MSNT auth helper has been updated to fix buffer overflows in the
helper. Finally, FTP data channels are now sanity checked to match the
address of the requested FTP server, which prevents injection of data
See also :
Update the affected squid package.
Risk factor :
High / CVSS Base Score : 7.5