FreeBSD : squid -- several remote denial of service vulnerabilities (e1156e90-7ad6-11de-b26a-0048543d60ce)
Medium Nessus Plugin ID 40396
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSquid security advisory 2009:2 reports :
Due to incorrect buffer limits and related bound checks Squid is vulnerable to a denial of service attack when processing specially crafted requests or responses.
Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted responses.
These problems allow any trusted client or external server to perform a denial of service attack on the Squid service.
Squid-2.x releases are not affected.
SolutionUpdate the affected packages.