- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-200410-15 (Squid: Remote DoS vulnerability)
A parsing error exists in the SNMP module of Squid where a specially crafted UDP packet can potentially cause the server to restart, closing all current connections. This vulnerability only exists in versions of Squid compiled with the 'snmp' USE flag.
Impact :
An attacker can repeatedly send these malicious UDP packets to the Squid server, leading to a denial of service.
Workaround :
Disable SNMP support or filter the port that has SNMP processing (default is 3401) to allow only SNMP data from trusted hosts.
To disable SNMP support put the entry snmp_port 0 in the squid.conf configuration file.
To allow only the local interface to process SNMP, add the entry 'snmp_incoming_address 127.0.0.1' in the squid.conf configuration file.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top