Executive Summary

Informations
Name MDVSA-2009:178 First vendor Publication 2009-07-29
Vendor Mandriva Last vendor Modification 2009-09-30
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability was discovered and corrected in perl-IO-Socket-SSL:

The verify_hostname_of_cert function in the certificate checking feature in IO-Socket-SSL (IO::Socket::SSL) 1.14 through 1.25 only matches the prefix of a hostname when no wildcard is used, which allows remote attackers to bypass the hostname check for a certificate (CVE-2009-3024).

This update provides a fix for this vulnerability.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2009:178

CWE : Common Weakness Enumeration

% Id Name
33 % CWE-310 Cryptographic Issues
33 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
33 % CWE-20 Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 15
Application 29

OpenVAS Exploits

Date Description
2012-02-12 Name : Gentoo Security Advisory GLSA 201110-24 (Squid)
File : nvt/glsa_201110_24.nasl
2011-03-09 Name : Gentoo Security Advisory GLSA 201101-06 (IO::Socket::SSL)
File : nvt/glsa_201101_06.nasl
2010-06-14 Name : Perl IO::Socket::SSL 'verify_hostname_of_cert()' Security Bypass Vulnerability
File : nvt/gb_perl_io_socket_ssl_35587.nasl
2009-12-10 Name : Mandriva Security Advisory MDVSA-2009:252-1 (perl-IO-Socket-SSL)
File : nvt/mdksa_2009_252_1.nasl
2009-10-11 Name : SLES11: Security update for perl-IO-Socket-SSL
File : nvt/sles11_perl-IO-Socket-.nasl
2009-09-21 Name : SuSE Security Summary SUSE-SR:2009:015
File : nvt/suse_sr_2009_015.nasl
2009-09-02 Name : Fedora Core 11 FEDORA-2009-8324 (squid)
File : nvt/fcore_2009_8324.nasl
2009-09-02 Name : Fedora Core 10 FEDORA-2009-8327 (squid)
File : nvt/fcore_2009_8327.nasl
2009-08-17 Name : Debian Security Advisory DSA 1843-2 (squid3)
File : nvt/deb_1843_2.nasl
2009-08-17 Name : Mandrake Security Advisory MDVSA-2009:161-1 (squid)
File : nvt/mdksa_2009_161_1.nasl
2009-08-17 Name : Mandrake Security Advisory MDVSA-2009:178 (squid)
File : nvt/mdksa_2009_178.nasl
2009-07-29 Name : Fedora Core 11 FEDORA-2009-7435 (perl-IO-Socket-SSL)
File : nvt/fcore_2009_7435.nasl
2009-07-29 Name : Fedora Core 10 FEDORA-2009-7544 (perl-IO-Socket-SSL)
File : nvt/fcore_2009_7544.nasl
2009-07-29 Name : FreeBSD Ports: squid
File : nvt/freebsd_squid23.nasl
2009-07-29 Name : Mandrake Security Advisory MDVSA-2009:161 (squid)
File : nvt/mdksa_2009_161.nasl
2009-07-27 Name : Squid Multiple Remote Denial of Service Vulnerabilities
File : nvt/squid_35812.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
56681 Squid HttpMsg.cc / HttpReply.cc Multiple Methods Malformed Request Remote DoS
56680 Squid HttpMsg.cc / client_side.cc Malformed Request Remote DoS
55686 Perl IO::Socket::SSL verify_hostname_of_cert Function Hostname Matching Certi...

Snort® IPS/IDS

Date Description
2015-04-02 Squid Proxy invalid HTTP response code denial of service attempt
RuleID : 33655 - Revision : 2 - Type : SERVER-OTHER
2014-01-10 Squid Proxy invalid HTTP response code denial of service attempt
RuleID : 16214 - Revision : 13 - Type : SERVER-OTHER
2014-01-10 DELETED Squid Proxy invalid HTTP response code denial of service attempt
RuleID : 16203 - Revision : 5 - Type : S

Nessus® Vulnerability Scanner

Date Description
2011-10-27 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201110-24.nasl - Type : ACT_GATHER_INFO
2011-01-17 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201101-06.nasl - Type : ACT_GATHER_INFO
2010-03-23 Name : The remote openSUSE host is missing a security update.
File : suse_11_0_squid-100316.nasl - Type : ACT_GATHER_INFO
2010-03-23 Name : The remote openSUSE host is missing a security update.
File : suse_11_1_squid-100318.nasl - Type : ACT_GATHER_INFO
2010-03-23 Name : The remote openSUSE host is missing a security update.
File : suse_11_2_squid-100318.nasl - Type : ACT_GATHER_INFO
2010-03-23 Name : The remote SuSE 11 host is missing a security update.
File : suse_11_squid-100316.nasl - Type : ACT_GATHER_INFO
2009-10-02 Name : The remote Mandriva Linux host is missing a security update.
File : mandriva_MDVSA-2009-252.nasl - Type : ACT_GATHER_INFO
2009-09-24 Name : The remote SuSE 11 host is missing a security update.
File : suse_11_perl-IO-Socket-SSL-090901.nasl - Type : ACT_GATHER_INFO
2009-09-09 Name : The remote openSUSE host is missing a security update.
File : suse_11_1_perl-IO-Socket-SSL-090901.nasl - Type : ACT_GATHER_INFO
2009-08-20 Name : The remote Fedora host is missing a security update.
File : fedora_2009-8324.nasl - Type : ACT_GATHER_INFO
2009-08-20 Name : The remote Fedora host is missing a security update.
File : fedora_2009-8327.nasl - Type : ACT_GATHER_INFO
2009-07-29 Name : The remote proxy server is prone to denial of service attacks.
File : squid_3_0_16.nasl - Type : ACT_GATHER_INFO
2009-07-28 Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_e1156e907ad611deb26a0048543d60ce.nasl - Type : ACT_GATHER_INFO
2009-07-28 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2009-161.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2013-05-11 00:47:32
  • Multiple Updates