FreeBSD Ports: Squid Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://www.squid-cache.org/Versions/v2/2.5/bugs/#squid-2.5.STABLE7-dothost http://www.vuxml.org/freebsd/f0db930b-496b-11d9-bf86-0050569f0001.html

Insight

The following package is affected: squid The installed version of squid suffers from an information disclosure vulnerability. An attacker that supplies malformed host names can gain access to sensitive information which may then be used to carry out further attacks.

Severity

Classification

CVE CVE-2004-2479
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

FreeBSD Ports: apache
exim -- local privilege escalation
FreeBSD Ports: asterisk18
FreeBSD Ports: automake
FreeBSD Ports: cabextract

FreeBSD Ports: squid

Take action and discover your vulnerabilities