Description

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and crash) via a crafted type in an (1) ICMP or (2) ICMP6 packet.

Remediation

References

CVE-2014-7141

Related Vulnerabilities

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-2854)

Drupal Other Vulnerability (CVE-2005-3975)

WordPress Plugin YaySMTP-Simple WP SMTP Mail Information Disclosure (2.2)

MySQL Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2005-0004)

PHP Other Vulnerability (CVE-2009-1271)

Severity

Medium

Classification

CVE-2014-7141

Tags

Missing Update Known Vulnerabilities