FreeBSD : squid -- Denial of Service vulnerability in DNS handling (296ecb59-0f6b-11df-8bab-0019996bc1f7)
Medium Nessus Plugin ID 44345
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSquid security advisory 2010:1 reports :
Due to incorrect data validation Squid is vulnerable to a denial of service attack when processing specially crafted DNS packets.
This problem allows any trusted client or external server who can determine the squid receiving port to perform a short-term denial of service attack on the Squid service.
SolutionUpdate the affected packages.