Oracle Solaris Third-Party Patch Update : squid (cve_2013_4123_input_validation)
Medium Nessus Plugin ID 80774
SynopsisThe remote Solaris system is missing a security patch for third-party software.
DescriptionThe remote Solaris system is missing necessary patches to address security updates :
- client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header. (CVE-2013-4123)
SolutionUpgrade to Solaris 184.108.40.206.0.