FreeBSD : Apache Traffic Server -- heap overflow vulnerability (acab2f88-7490-11e1-865f-00e0814cab4e)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

CERT-FI reports :

A heap overflow vulnerability has been found in the HTTP (Hypertext
Transfer Protocol) protocol handling of Apache Traffic Server. The
vulnerability allows an attacker to cause a denial of service or
potentially to execute his own code by sending a specially modified
HTTP message to an affected server.

See also :

http://www.nessus.org/u?778333b2

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 58473 ()

Bugtraq ID:

CVE ID: CVE-2012-0256

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now