Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusTenable802013.PRM
HistoryAug 29, 2016 - 12:00 a.m.

Squid < 3.5.17, 4.0.9 Multiple Vulnerabilities

2016-08-2900:00:00
Tenable
www.tenable.com
10
JSON

The specific version of Squid that the system is running is reportedly affected by the following vulnerabilities:

  • Squid contains a flaw in esi/Esi.cc that is triggered as input is not properly validated when handling ESI responses. This may allow a remote attacker to disclose the server stack layout. (CVE-2016-4053)

  • Squid contains an overflow condition in esi/Esi.cc that is triggered as user-supplied input is not properly validated when handling ESI responses. This may allow a remote attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code. (CVE-2016-4054)

  • Squid contains an assertion flaw in esi/Esi.cc that is triggered as input is not properly validated when handling ESI responses. This may allow a remote attacker to terminate the service. (CVE-2016-4052)

  • Squid contains an overflow condition that is triggered as user-supplied input is not properly validated when processing the length of content lines in reports by the cachemgr.cgi tool. This may allow a remote attacker to cause a buffer overflow, resulting in a denial of service or potentially allowing the execution of arbitrary code. (CVE-2016-4051)

Binary data 802013.prm

Related

freebsd 1
archlinux 1
openvas 25
nessus 34
oraclelinux 4
redhat 4
amazon 2
centos 4
debian 4
osv 3
ubuntucve 5
ubuntu 1
fedora 2
debiancve 5
veracode 5
cve 5
prion 5
checkpoint_advisories 1
mageia 1
gentoo 1
suse 2
oracle 1
freebsd
freebsd
squid -- multiple vulnerabilities
2016-04-20 00:00:00
archlinux
archlinux
squid: multiple issues
2016-04-23 00:00:00
openvas
openvas
Squid Multiple Vulnerabilities (SQUID-2016:5, SQUID-2016:6) - Windows
2016-05-04 00:00:00
Squid Multiple Vulnerabilities (SQUID-2016:5, SQUID-2016:6) - Linux
2016-05-04 00:00:00
CentOS Update for squid CESA-2016:1138 centos6
2016-06-03 00:00:00
nessus
nessus
FreeBSD : squid -- multiple vulnerabilities (e05bfc92-0763-11e6-94fa-002590263bf5)
2016-04-21 00:00:00
Squid 3.x < 3.5.17 / 4.x < 4.0.9 Esi.cc Multiple Vulnerabilities
2016-05-17 00:00:00
RHEL 6 : squid (RHSA-2016:1138)
2016-05-31 00:00:00
oraclelinux
oraclelinux
squid security update
2016-05-31 00:00:00
squid security update
2016-05-31 00:00:00
squid34 security update
2016-05-31 00:00:00
redhat
redhat
(RHSA-2016:1138) Moderate: squid security update
2016-05-31 04:53:29
(RHSA-2016:1139) Moderate: squid security update
2016-05-31 04:53:29
(RHSA-2016:1140) Moderate: squid34 security update
2016-05-31 04:53:36
amazon
amazon
Medium: squid
2016-06-15 13:30:00
Medium: squid
2016-08-17 13:30:00
centos
centos
squid security update
2016-05-31 10:56:37
squid34 security update
2016-05-31 10:58:08
squid security update
2016-05-31 11:59:06
debian
debian
[SECURITY] [DSA 3625-1] squid3 security update
2016-07-22 09:16:22
[SECURITY] [DLA 478-1] squid3 security update
2016-05-16 16:29:41
[SECURITY] [DSA 3625-1] squid3 security update
2016-07-22 09:16:22
osv
osv
squid3 - security update
2016-07-22 00:00:00
squid3 - security update
2016-05-16 00:00:00
squid3 - security update
2016-07-23 00:00:00
ubuntucve
ubuntucve
CVE-2016-4054
2016-04-25 00:00:00
CVE-2016-4053
2016-04-25 00:00:00
CVE-2016-4052
2016-04-25 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2016-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: squid-3.5.19-2.fc24
2016-07-12 20:35:35
[SECURITY] Fedora 23 Update: squid-3.5.10-4.fc23
2016-07-13 00:00:11
debiancve
debiancve
CVE-2016-4054
2016-04-25 14:59:00
CVE-2016-4052
2016-04-25 14:59:00
CVE-2016-4053
2016-04-25 14:59:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:34:26
Arbitrary Code Execution
2019-05-02 05:34:26
Information Disclosure
2019-05-02 05:34:26
cve
cve
CVE-2016-4052
2016-04-25 14:59:00
CVE-2016-4051
2016-04-25 14:59:00
CVE-2016-4053
2016-04-25 14:59:00
prion
prion
Stack overflow
2016-04-25 14:59:00
Stack overflow
2016-04-25 14:59:00
Buffer overflow
2016-04-25 14:59:00
checkpoint_advisories
checkpoint_advisories
Squid Proxy ESI Component Stack Buffer Overflow (CVE-2016-4054)
2016-06-15 00:00:00
mageia
mageia
Updated squid packages fix CVE-2016-4051
2016-04-25 10:57:21
gentoo
gentoo
Squid: Multiple vulnerabilities
2016-07-09 00:00:00
suse
suse
Security update for squid3 (important)
2016-08-16 18:08:55
Security update for squid3 (important)
2016-08-09 17:12:26
oracle
oracle
Oracle Critical Patch Update - July 2016
2016-07-19 00:00:00
JSON
Related for 802013.PRM
freebsd1archlinux1openvas25nessus34oraclelinux4redhat4amazon2centos4debian4osv3ubuntucve5ubuntu1fedora2debiancve5veracode5cve5prion5checkpoint_advisories1mageia1gentoo1suse2oracle1