Description

Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients.

Remediation

References

CVE-2016-10003

Related Vulnerabilities

WordPress Plugin SEO Ultimate 'wp-admin/post.php' Cross-Site Scripting (6.9.1)

WordPress Plugin Advanced Custom Fields PRO PHP Object Injection (6.0.7)

WordPress Plugin dsSearchAgent:WordPress Edition Cross-Site Scripting (1.0-beta10)

WordPress Plugin Video Lessons Manager-Best Video Course LMS Cross-Site Scripting (1.7.1)

OpenSSL Use of Insufficiently Random Values Vulnerability (CVE-2019-1549)

Severity

High

Classification

CVE-2016-10003 CWE-200 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities