vulnerability
FreeBSD: squid -- multiple vulnerabilities (Multiple CVEs)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Apr 20, 2016 | Apr 21, 2016 | Jul 28, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Apr 20, 2016
Added
Apr 21, 2016
Modified
Jul 28, 2025
Description
Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.
Solution
freebsd-upgrade-package-squid
References
- BID-91787
- CVE-2016-4051
- https://attackerkb.com/topics/CVE-2016-4051
- CVE-2016-4052
- https://attackerkb.com/topics/CVE-2016-4052
- CVE-2016-4053
- https://attackerkb.com/topics/CVE-2016-4053
- CVE-2016-4054
- https://attackerkb.com/topics/CVE-2016-4054
- URL-http://www.squid-cache.org/Advisories/SQUID-2016_5.txt
- URL-http://www.squid-cache.org/Advisories/SQUID-2016_6.txt
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.