WEB APPLICATION VULNERABILITIES Standard & Premium

Squid Improper Input Validation Vulnerability (CVE-2016-2571)

Description

http.cc in Squid 3.x before 3.5.15 and 4.x before 4.0.7 proceeds with the storage of certain data after a response-parsing failure, which allows remote HTTP servers to cause a denial of service (assertion failure and daemon exit) via a malformed response.

Remediation

References

Related Vulnerabilities

WordPress Plugin Ultimate Maps by Supsystic Cross-Site Scripting (1.2.4)

WordPress Plugin Store Locator Plus for WordPress Privilege Escalation (5.5.14)

MySQL CVE-2019-2797 Vulnerability (CVE-2019-2797)

WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1)

WordPress Plugin Animate It! Cross-Site Request Forgery (2.3.5)

Severity

High

Classification

CVE-2016-2571 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities