Description

The pinger in Squid 3.x before 3.4.8 allows remote attackers to obtain sensitive information or cause a denial of service (crash) via a crafted (1) ICMP or (2) ICMP6 packet size.

Remediation

References

CVE-2014-7142

Related Vulnerabilities

WordPress Plugin Directories Pro Cross-Site Scripting (1.3.45)

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2021-20187)

MyBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2018-7305)

WordPress Plugin Visitor Traffic Real Time Statistics Security Bypass (2.11)

Apache Tomcat version older than 6.0.16

Severity

Medium

Classification

CVE-2014-7142 CWE-20

Tags

Missing Update Known Vulnerabilities