CVE-2016-4053
Published: 25 April 2016
Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization.
Notes
Author | Note |
---|---|
mdeslaur | same patches as CVE-2016-4052 |
Priority
CVSS 3 base score: 3.7