Vulnerability & Exploit Database

Back to search

Amazon Linux AMI: CVE-2016-4052: Security patch for squid (ALAS-2016-713)

Severity CVSS Published Added Modified
7 (AV:N/AC:M/Au:N/C:P/I:P/A:P) April 24, 2016 June 14, 2016 December 21, 2017

Description

Multiple stack-based buffer overflows in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote HTTP servers to cause a denial of service or execute arbitrary code via crafted Edge Side Includes (ESI) responses.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

amazon-linux-upgrade-squid

Related Vulnerabilities