Squid "idnsALookup()" DNS Name Handling Buffer Overflow Vulnerability

2015年7月21日

Email
Facebook
Twitter
Google+
Linkedin

危険度: : 高

概要

Buffer overflow in the idnsALookup function in dns_internal.cc in Squid 3.2 through 3.2.11 and 3.3 through 3.3.6 allows remote attackers to cause a denial of service (memory corruption and server termination) via a long name in a DNS lookup request.

トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

対応方法

Trend Micro Deep Security DPI Rule Number: 1005605