FreeBSD : squid -- denial of service (c37de843-488e-11e2-a5c9-0019996bc1f7)
Medium Nessus Plugin ID 63366
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionSquid developers report :
Due to missing input validation Squid cachemgr.cgi tool is vulnerable to a denial of service attack when processing specially crafted requests.
This problem allows any client able to reach the cachemgr.cgi to perform a denial of service attack on the service host.
The nature of the attack may cause secondary effects through resource consumption on the host server.
SolutionUpdate the affected packages.