Lucene search

MitreCVELIST:CVE-2014-7142

HistoryNov 26, 2014 - 3:00 p.m.

CVE-2014-7142

2014-11-2615:00:00

mitre

www.cve.org

AI Score

8.2

Confidence

High

EPSS

0.027

Percentile

90.6%

JSON

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

References

lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html

lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html

seclists.org/oss-sec/2014/q3/539

seclists.org/oss-sec/2014/q3/613

seclists.org/oss-sec/2014/q3/626

secunia.com/advisories/60242

ubuntu.com/usn/usn-2422-1

www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

www.securityfocus.com/bid/70022

www.squid-cache.org/Advisories/SQUID-2014_4.txt

bugzilla.novell.com/show_bug.cgi?id=891268