vulnerability

Oracle Solaris 11: CVE-2016-4053 (11.4 GA)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:P/I:N/A:N)	Apr 25, 2016	Oct 19, 2018	Feb 17, 2022

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:N/A:N)

Published

Apr 25, 2016

Added

Oct 19, 2018

Modified

Feb 17, 2022

Description

Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization.

Solution

oracle-solaris-11-4-upgrade-entire-11-4-11-4-0-0-1-15-0

References

BID-86788
BID-91787
CVE-2016-4053
https://attackerkb.com/topics/CVE-2016-4053
DEBIAN-DSA-3625
REDHAT-RHSA-2016:1138
REDHAT-RHSA-2016:1139
REDHAT-RHSA-2016:1140
https://support.oracle.com/epmos/faces/DocumentDisplay?id=1448883.1&displayIndex=1

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report