CVE-2016-4554

2016-05-10T19:59:00
ID CVE-2016-4554
Type cve
Reporter cve@mitre.org
Modified 2016-11-30T03:06:00

Description

mime_header.cc in Squid before 3.5.18 allows remote attackers to bypass intended same-origin restrictions and possibly conduct cache-poisoning attacks via a crafted HTTP Host header, aka a "header smuggling" issue.