Test Kennung:	1.3.6.1.4.1.25623.1.0.113797
Kategorie:	Web Servers
Titel:	Squid Information Disclosure Vulnerability (SQUID-2020:12)
Zusammenfassung:	Squid is prone to an information disclosure vulnerability.
Beschreibung:	Summary: Squid is prone to an information disclosure vulnerability. Vulnerability Insight: The vulnerability exists because of an out-of-bounds read in WCCP protocol data. Vulnerability Impact: Successful exploitation would allow an attacker to read sensitive information. Affected Software/OS: Squid proxy version 2.6 through 2.7.STABLE9, 3.x through 3.5.28, 4.x through 4.16 and 5.x through 5.1. Solution: Update to version 4.17, 5.2 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-28116 Debian Security Information: DSA-5171 (Google Search) https://www.debian.org/security/2022/dsa-5171 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T4EPIWUZDJAXADDHVOPKRBTQHPBR6H66/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LSQ3U54ZCNXR44QRPW3AV2VCS6K3TKCF/ https://security.gentoo.org/glsa/202105-14 http://www.squid-cache.org/Versions/ https://github.com/squid-cache/squid/security/advisories/GHSA-rgf3-9v3p-qp82 https://www.zerodayinitiative.com/advisories/ZDI-21-157/ http://www.openwall.com/lists/oss-security/2021/10/04/1
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.