Description

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

Remediation

References

CVE-2014-7142

Related Vulnerabilities

YetiForce CRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-1340)

Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-13082)

WebLogic CVE-2021-2394 Vulnerability (CVE-2021-2394)

MySQL CVE-2020-14809 Vulnerability (CVE-2020-14809)

WebLogic CVE-2020-2883 Vulnerability (CVE-2020-2883)

Severity

Medium

Classification

CVE-2014-7142 CWE-20

Tags

Missing Update Known Vulnerabilities