PT-2010-4526 · Squid+1 · Squid+2

Phil Oester

Publicado

2010-09-20

Atualizado

2011-05-19

CVE-2010-3072

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Squid versions 3.0.0 through 3.1.7 Squid versions 3.2.0 through 3.2.0.1

Description The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, by sending a crafted request. This is due to a problem in the string-comparison functions.

Recommendations For Squid versions 3.0.0 through 3.1.7, update to version 3.1.8 or later. For Squid versions 3.2.0 through 3.2.0.1, update to version 3.2.0.2 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2010-3072

DSA-2111-1

RHSA-2011:0545

RHSA-2011_0545

Produtos afetados

Red Hat

Squid

Squid Cache

PT-2010-4526 · Squid+1 · Squid+2

CVE-2010-3072

Identificadores relacionados

Produtos afetados

Referências · 20