FreeBSD : trafficserver -- unspecified vulnerability (6318b303-3507-11e4-b76c-0011d823eebd)

Critical Nessus Plugin ID 77560


The remote FreeBSD host is missing a security-related update.


Bryan Call reports :

Below is our announcement for the security issue reported to us from Yahoo! Japan. All versions of Apache Traffic Server are vulnerable. We urge users to upgrade to either or 5.0.1 immediately.

This fixes CVE-2014-3525 and limits access to how the health checks are performed.


Update the affected package.

See Also

Plugin Details

Severity: Critical

ID: 77560

File Name: freebsd_pkg_6318b303350711e4b76c0011d823eebd.nasl

Version: $Revision: 1.1 $

Type: local

Published: 2014/09/08

Modified: 2014/09/08

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:trafficserver, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2014/09/05

Vulnerability Publication Date: 2014/07/23

Reference Information

CVE: CVE-2014-3525