Lucene search
K

46 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2016-4051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow in cachemgr.cgi in Squid 2.x, 3.x before 3.5.17, and 4.x before 4.0.9 might allow remote attackers to cause a denial of service or execute...

8.8CVSS7.5AI score0.16893EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.34 views

RHEL 5 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: buffer overflow in cachemgr.cgi CVE-2016-4051 - Squid, when transparent interception mode is...

7.5CVSS9.2AI score0.38893EPSS
Exploits2References14
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.24 views

RHEL 5 : squid (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code...

9.6AI score0.74477EPSS
Exploits1References22
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.27 views

Debian: Security Advisory (DLA-478-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.77559EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.21 views

Debian: Security Advisory (DLA-556-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8AI score
Exploits0References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2016:2147-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.5AI score0.38893EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2016:1996-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79969EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2016:2008-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.7AI score0.79969EPSS
Exploits2References21
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2016-1025)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.79969EPSS
Exploits1References2
Veracode
Veracode
added 2019/01/15 9:12 a.m.33 views

Remote Code Execution (RCE)

squid is vulnerable to remote code execution. It was found that the fix for CVE-2016-4051 released via RHSA-2016:1138 did not properly prevent the stack overflow in the mungeotherline function. A remote attacker could send specially crafted data to the Squid proxy, which would exploit the cachemg...

9.8CVSS9.2AI score0.16893EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.28 views

Amazon Linux: Security Advisory (ALAS-2016-735)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.16893EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2016/10/26 12:0 a.m.49 views

Amazon Linux: Security Advisory (ALAS-2016-713)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.77559EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.26 views

SUSE SLES11 Security Update : squid (SUSE-SU-2016:2147-1)

This update for squid fixes the following issues : - CVE-2016-4051: backport fix buffer overflow in cachemgr.cgi bsc976553 - CVE-2016-4554: backport fix for header smuggling issue in HTTP Request processing bsc979010 Note that Tenable Network Security has extracted the preceding description block...

8.8CVSS7.3AI score0.38893EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.26 views

Squid < 3.5.17, 4.0.9 Multiple Vulnerabilities

Binary data 802013.prm...

8.8CVSS6.9AI score0.77559EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2016/08/18 12:0 a.m.40 views

Amazon Linux AMI : squid (ALAS-2016-735)

A buffer overflow flaw was found in the way the Squid cachemgr.cgi utility processed remotely relayed Squid input. When the CGI interface utility is used, a remote attacker could possibly use this flaw to execute arbitrary code. CVE-2016-4051 It was found that the fix for CVE-2016-4051 did not...

9.8CVSS7.4AI score0.16893EPSS
Exploits0References3
Amazon
Amazon
added 2016/08/17 12:0 a.m.52 views

Medium: squid

Issue Overview: A buffer overflow flaw was found in the way the Squid cachemgr.cgi utility processed remotely relayed Squid input. When the CGI interface utility is used, a remote attacker could possibly use this flaw to execute arbitrary code. CVE-2016-4051 It was found that the fix for...

9.8CVSS9.1AI score0.16893EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/17 12:0 a.m.35 views

openSUSE Security Update : squid (openSUSE-2016-988)

The Squid HTTP proxy has been updated to version 3.3.14, fixing the following security issues : - Fixed multiple Denial of Service issues in HTTP Response processing. CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc968392, bsc968393, bsc968394, bsc968395 - CVE-2016-3947: Buffer...

8.8CVSS6.9AI score0.79969EPSS
Exploits2References34
Prion
Prion
added 2016/08/10 2:59 p.m.22 views

Stack overflow

Stack-based buffer overflow in the mungeotherline function in cachemgr.cgi in the squid package before 3.1.23-16.el68.6 in Red Hat Enterprise Linux 6 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for...

7.5CVSS9.1AI score0.16893EPSS
Exploits0References2Affected Software3
OpenVAS
OpenVAS
added 2016/08/02 12:0 a.m.40 views

Fedora Update for squid FEDORA-2016-b3b9407940

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.79969EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2016/07/25 12:0 a.m.38 views

Debian DSA-3625-1 : squid3 - security update

Several security issues have been discovered in the Squid caching proxy. - CVE-2016-4051 : CESG and Yuriy M. Kaminskiy discovered that Squid cachemgr.cgi was vulnerable to a buffer overflow when processing remotely supplied inputs relayed through Squid. - CVE-2016-4052 : CESG discovered that a...

8.8CVSS7.1AI score0.79969EPSS
Exploits1References18
Rows per page
Query Builder