Description

Buffer overflow in Squid 3.x before 3.5.17 and 4.x before 4.0.9 allows remote attackers to execute arbitrary code via crafted Edge Side Includes (ESI) responses.

Remediation

References

CVE-2016-4054

Related Vulnerabilities

Liferay Portal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-10795)

phpMyFAQ Cleartext Transmission of Sensitive Information Vulnerability (CVE-2022-4409)

WordPress Plugin Related Posts for WordPress Cross-Site Scripting (2.0.3)

Atlassian Jira Deserialization of Untrusted Data Vulnerability (CVE-2020-14172)

WordPress Plugin WP RSS Aggregator-News Feeds, Autoblogging, Youtube Video Feeds and More Multiple Unspecified Vulnerabilities (4.6.8)

Severity

High

Classification

CVE-2016-4054 CWE-119 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities