Denial of Service Vulnerability in Squid Proxy Server via Crafted ESI Responses

Denial of Service Vulnerability in Squid Proxy Server via Crafted ESI Responses

CVE-2016-4555 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

client_side_request.cc in Squid 3.x before 3.5.18 and 4.x before 4.0.10 allows remote servers to cause a denial of service (crash) via crafted Edge Side Includes (ESI) responses.

Learn more about our Cis Benchmark Audit For Server Software.