Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2005:181 (squid)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55642

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2005:181 (squid)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to squid
announced via advisory MDKSA-2005:181.

Squid 2.5.9, while performing NTLM authentication, does not properly
handle certain request sequences, which allows attackers to cause a
denial of service (daemon restart).

The updated packages have been patched to address these issues.

Affected versions: 10.1, 10.2, 2006.0, Corporate 3.0,
Corporate Server 2.1,

Multi Network Firewall 2.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:181

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: BugTraq ID: 14977
Common Vulnerability Exposure (CVE) ID: CVE-2005-2917
1014920
http://securitytracker.com/id?1014920
14977
http://www.securityfocus.com/bid/14977
16992
http://secunia.com/advisories/16992
17015
http://secunia.com/advisories/17015
17050
http://secunia.com/advisories/17050
17177
http://secunia.com/advisories/17177
19161
http://secunia.com/advisories/19161
19532
http://secunia.com/advisories/19532
19607
http://www.osvdb.org/19607
20060401-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U
DSA-828
http://www.debian.org/security/2005/dsa-828
FLSA-2006:152809
http://fedoranews.org/updates/FEDORA--.shtml
MDKSA-2005:181
http://www.mandriva.com/security/advisories?name=MDKSA-2005:181
RHSA-2006:0045
http://www.redhat.com/support/errata/RHSA-2006-0045.html
RHSA-2006:0052
http://www.redhat.com/support/errata/RHSA-2006-0052.html
SCOSA-2005.49
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
SUSE-SR:2005:027
http://www.novell.com/linux/security/advisories/2005_27_sr.html
USN-192-1
http://www.ubuntu.com/usn/usn-192-1/
oval:org.mitre.oval:def:11580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11580
squid-ntlm-authentication-dos(24282)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24282

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55642
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:181 (squid)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to squid announced via advisory MDKSA-2005:181. Squid 2.5.9, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart). The updated packages have been patched to address these issues. Affected versions: 10.1, 10.2, 2006.0, Corporate 3.0, Corporate Server 2.1, Multi Network Firewall 2.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:181 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 14977 Common Vulnerability Exposure (CVE) ID: CVE-2005-2917 1014920 http://securitytracker.com/id?1014920 14977 http://www.securityfocus.com/bid/14977 16992 http://secunia.com/advisories/16992 17015 http://secunia.com/advisories/17015 17050 http://secunia.com/advisories/17050 17177 http://secunia.com/advisories/17177 19161 http://secunia.com/advisories/19161 19532 http://secunia.com/advisories/19532 19607 http://www.osvdb.org/19607 20060401-01-U ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U DSA-828 http://www.debian.org/security/2005/dsa-828 FLSA-2006:152809 http://fedoranews.org/updates/FEDORA--.shtml MDKSA-2005:181 http://www.mandriva.com/security/advisories?name=MDKSA-2005:181 RHSA-2006:0045 http://www.redhat.com/support/errata/RHSA-2006-0045.html RHSA-2006:0052 http://www.redhat.com/support/errata/RHSA-2006-0052.html SCOSA-2005.49 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt SUSE-SR:2005:027 http://www.novell.com/linux/security/advisories/2005_27_sr.html USN-192-1 http://www.ubuntu.com/usn/usn-192-1/ oval:org.mitre.oval:def:11580 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11580 squid-ntlm-authentication-dos(24282) https://exchange.xforce.ibmcloud.com/vulnerabilities/24282
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com