Back to search
CVE-2016-10003
Published: Jan 27, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20161217 Re: CVE Request - squid HTTP proxy multiple Information Disclosure issues
mailing-list
x_refsource_MLIST
1037512
vdb-entry
x_refsource_SECTRACK
94953
vdb-entry
x_refsource_BID
http://www.squid-cache.org/Advisories/SQUID-2016_10.txt
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now