CVE-2016-4054

Опубликовано: 25 апр. 2016

Источник: ubuntu

Приоритет: medium

CVSS2: 6.8

CVSS3: 8.1

Описание

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

Релиз	Статус	Примечание
devel	released	3.5.12-1ubuntu8
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was released [3.3.8-1ubuntu6.8]]
esm-infra/xenial	not-affected	3.5.12-1ubuntu7.2
precise	released	3.1.19-1ubuntu3.12.04.7
trusty	released	3.3.8-1ubuntu6.8
trusty/esm	DNE	trusty was released [3.3.8-1ubuntu6.8]
upstream	released	3.5.17-1
vivid/stable-phone-overlay	DNE
vivid/ubuntu-core	DNE
wily	released	3.3.8-1ubuntu16.3

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.1 High

CVSS3

Связанные уязвимости

CVE-2016-4054

redhat

больше 9 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

CVE-2016-4054

CVSS3: 8.1

nvd

больше 9 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

CVE-2016-4054

CVSS3: 8.1

debian

больше 9 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows ...

GHSA-4qf5-r4mp-pqp5

CVSS3: 8.1

github

больше 3 лет назад

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

ELSA-2016-1138

oracle-oval

больше 9 лет назад

ELSA-2016-1138: squid security update (MODERATE)

6.8 Medium

CVSS2

8.1 High

CVSS3

CVE-2016-4054

Описание

Пакет squid3

Ссылки на источники

Связанные уязвимости