Detections
Analytics

FreeBSD : squid -- possible information disclosure (f0db930b-496b-11d9-bf86-0050569f0001)

high Nessus Plugin ID 19164

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The squid-2.5 patches pages notes :

In certain conditions Squid returns random data as error messages in response to malformed host name, possibly leaking random internal information which may come from other requests.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?4c2cff58

http://www.nessus.org/u?c939f57a

Plugin Details

Severity: High

ID: 19164

File Name: freebsd_pkg_f0db930b496b11d9bf860050569f0001.nasl

Version: 1.13

Type: local

Published: 7/13/2005

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:squid, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 12/9/2004

Vulnerability Publication Date: 11/23/2004