Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2016-3947

Опубликовано: 07 апр. 2016
Источник: nvd
CVSS3: 8.2
CVSS2: 7.5
EPSS Высокий

Описание

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log files via an ICMPv6 packet.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*
Версия до 3.5.15 (включая)
cpe:2.3:a:squid-cache:squid:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.3:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.4:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.5:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:squid-cache:squid:4.0.7:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

EPSS

Процентиль: 99%
0.7881
Высокий

8.2 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2016-3947

CVSS3: 8.2
ubuntu
почти 10 лет назад

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log files via an ICMPv6 packet.

redhat логотип

CVE-2016-3947

redhat
почти 10 лет назад

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log files via an ICMPv6 packet.

debian логотип

CVE-2016-3947

CVSS3: 8.2
debian
почти 10 лет назад

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.c ...

github логотип

GHSA-59fp-mgp3-qph8

CVSS3: 8.2
github
больше 3 лет назад

Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log files via an ICMPv6 packet.

suse-cvrf логотип

openSUSE-SU-2016:2081-1

suse-cvrf
больше 9 лет назад

Security update for squid

EPSS

Процентиль: 99%
0.7881
Высокий

8.2 High

CVSS3

7.5 High

CVSS2

Дефекты

CWE-119