← back
CVE-2016-10003

CVE-2016-10003

EPSS 4.8%
Incorrect HTTP Request header comparison in Squid HTTP Proxy 3.5.0.1 through 3.5.22, and 4.0.1 through 4.0.16 results in Collapsed Forwarding feature mistakenly identifying some private responses as being suitable for delivery to multiple clients.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.openwall.com/lists/oss-security/2016/12/18/1http://www.securityfocus.com/bid/94953http://www.securitytracker.com/id/1037512http://www.squid-cache.org/Advisories/SQUID-2016_10.txt