Double Free Vulnerability in Esi.cc in Squid 3.x and 4.x Allows Remote Denial of Service

Double Free Vulnerability in Esi.cc in Squid 3.x and 4.x Allows Remote Denial of Service

CVE-2016-4556 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Double free vulnerability in Esi.cc in Squid 3.x before 3.5.18 and 4.x before 4.0.10 allows remote servers to cause a denial of service (crash) via a crafted Edge Side Includes (ESI) response.

Learn more about our Cis Benchmark Audit For Server Software.