Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA966] DSA-966-1 adzapper


Vulnerability Assessment Details

[DSA966] DSA-966-1 adzapper

Vulnerability Assessment Summary
DSA-966-1 adzapper

Detailed Explanation for this Vulnerability Assessment

Thomas Reifferscheid discovered that adzapper, a proxy advertisement
zapper add-on, when installed as test in squid, the Internet object
cache, can consume a lot of CPU resources and hence cause a denial of
service on the proxy host.
The old stable distribution (woody) does not contain an adzapper package.
For the stable distribution (sarge) this problem has been fixed in
version 20050316-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 20060115-1.
We recommend that you upgrade your adzapper package.


Solution : http://www.debian.org/security/2006/dsa-966
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Cisco 1861 C1861-UC-4FXO-K9 Call Manager Express VoIP Gateway PoE - UNTESTED
$149.99
Cisco 1861 C1861-UC-4FXO-K9 Call Manager Express VoIP Gateway PoE - UNTESTED pictureLot of 10 3COM 3101SP Basic Speaker Phone VoIP Phone
$225.99
Lot of 10 3COM  3101SP Basic Speaker Phone VoIP Phone  pictureMitel 5312 VOIP IP Phone 50005847 Display Telephone
$29.95
Mitel 5312 VOIP IP Phone 50005847 Display Telephone pictureAvaya 1151B1 700227242 VOIP POE IP Phone Power Supply - Guaranteed
$12.99
Avaya 1151B1 700227242 VOIP POE IP Phone Power Supply - Guaranteed picture


Discussions

No Discussions have been posted on this vulnerability.