CVE-2016-4054

Опубликовано: 25 апр. 2016

Источник: ubuntu

Приоритет: medium

EPSS Высокий

CVSS2: 6.8

CVSS3: 8.1

Описание

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

Релиз	Статус	Примечание
devel	released	3.5.12-1ubuntu8
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [3.3.8-1ubuntu6.8]]
esm-infra/xenial	released	3.5.12-1ubuntu7.2
precise	released	3.1.19-1ubuntu3.12.04.7
trusty	released	3.3.8-1ubuntu6.8
trusty/esm	DNE	trusty was released [3.3.8-1ubuntu6.8]
upstream	released	3.5.17-1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	released	3.3.8-1ubuntu16.3

Показывать по

Ссылки на источники

EPSS

Процентиль: 99%

0.8268

Высокий

6.8 Medium

CVSS2

8.1 High

CVSS3

Связанные уязвимости

CVE-2016-4054

redhat

почти 10 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

CVE-2016-4054

CVSS3: 8.1

nvd

почти 10 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

CVE-2016-4054

CVSS3: 8.1

debian

почти 10 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows ...

GHSA-4qf5-r4mp-pqp5

CVSS3: 8.1

github

больше 3 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

ELSA-2016-1138

oracle-oval

больше 9 лет назад

ELSA-2016-1138: squid security update (MODERATE)

EPSS

Процентиль: 99%

0.8268

Высокий

6.8 Medium

CVSS2

8.1 High

CVSS3

CVE-2016-4054

Описание

Пакет squid3

Ссылки на источники

Связанные уязвимости