Description
An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users' sessions or non-Squid processes.
Remediation
References
Related Vulnerabilities
WordPress Plugin Contact Form 7 Database Addon-CFDB7 CSV Injection (1.2.5.5)
WordPress Plugin Product Catalog SQL Injection (4.2.2)
IBM RTC Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-6129)
MyBB Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3759)
WordPress Plugin EZ Google Analytics Cross-Site Scripting (4.1.06)