Test Kennung:	1.3.6.1.4.1.25623.1.0.106479
Kategorie:	Web Servers
Titel:	Squid 3.1 <= 3.5.22, 4.0 <= 4.0.16 Information Disclosure Vulnerability (SQUID-2016:11) - Linux
Zusammenfassung:	Squid is prone to an information disclosure vulnerability.
Beschreibung:	Summary: Squid is prone to an information disclosure vulnerability. Vulnerability Insight: Due to incorrect HTTP conditional request handling Squid can deliver responses containing private data to clients it should not have reached. Vulnerability Impact: A remote attacker may discover private and sensitive information about another clients browsing session. Potentially including credentials which allow access to further sensitive resources. Affected Software/OS: Squid versions 3.1 through 3.5.22 and 4.0 through 4.0.16. Solution: Update to version 3.5.23, 4.0.17 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2016-10002 BugTraq ID: 94953 http://www.securityfocus.com/bid/94953 Debian Security Information: DSA-3745 (Google Search) http://www.debian.org/security/2016/dsa-3745 http://www.openwall.com/lists/oss-security/2016/12/18/1 RedHat Security Advisories: RHSA-2017:0182 http://rhn.redhat.com/errata/RHSA-2017-0182.html RedHat Security Advisories: RHSA-2017:0183 http://rhn.redhat.com/errata/RHSA-2017-0183.html http://www.securitytracker.com/id/1037513
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.