Description

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

Remediation

References

CVE-2014-7142

Related Vulnerabilities

WordPress Plugin Booster for WooCommerce PHP Object Injection (3.0.1)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-7830)

WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.27)

WordPress Plugin Popups, Welcome Bar, Optins and Lead Generation-Icegram Cross-Site Scripting (2.0.2)

WordPress Plugin Password Protected Open Redirect (1.4)

Severity

Medium

Classification

CVE-2014-7142 CWE-20

Tags

Missing Update Known Vulnerabilities