Vulnerability Details : CVE-2016-3947
Heap-based buffer overflow in the Icmp6::Recv function in icmp/Icmp6.cc in the pinger utility in Squid before 3.5.16 and 4.x before 4.0.8 allows remote servers to cause a denial of service (performance degradation or transition failures) or write sensitive information to log files via an ICMPv6 packet.
Vulnerability category: OverflowDenial of service
Products affected by CVE-2016-3947
- cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
- cpe:2.3:a:squid-cache:squid:*:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.7:*:*:*:*:*:*:*
- cpe:2.3:a:squid-cache:squid:4.0.2:*:*:*:*:*:*:*
Threat overview for CVE-2016-3947
Top countries where our scanners detected CVE-2016-3947
Top open port discovered on systems with this issue
80
IPs affected by CVE-2016-3947 345,040
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2016-3947!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2016-3947
76.65%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-3947
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST | |
|
8.2
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H |
3.9
|
4.2
|
NIST |
CWE ids for CVE-2016-3947
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-3947
-
http://www.squid-cache.org/Versions/v3/3.1/changesets/squid-3.1-10495.patch
Patch
-
http://www.squid-cache.org/Advisories/SQUID-2016_3.txt
Vendor Advisory
-
http://www.squid-cache.org/Versions/v3/3.2/changesets/squid-3.2-11839.patch
Patch;Third Party Advisory;US Government Resource
-
http://www.squid-cache.org/Versions/v3/3.4/changesets/squid-3.4-13232.patch
Patch
-
http://www.squid-cache.org/Versions/v3/3.3/changesets/squid-3.3-12694.patch
Patch
-
http://www.ubuntu.com/usn/USN-2995-1
USN-2995-1: Squid vulnerabilities | Ubuntu security notices
-
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00040.html
[security-announce] SUSE-SU-2016:2089-1: important: Security update for
-
http://lists.opensuse.org/opensuse-updates/2016-08/msg00069.html
openSUSE-SU-2016:2081-1: moderate: Security update for squid
-
http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00010.html
[security-announce] SUSE-SU-2016:1996-1: important: Security update for
-
https://security.gentoo.org/glsa/201607-01
Squid: Multiple vulnerabilities (GLSA 201607-01) — Gentoo security
-
http://www.squid-cache.org/Versions/v3/3.5/changesets/squid-3.5-14015.patch
Patch
-
http://www.securitytracker.com/id/1035457
Squid Bug in ICMPv6 Pinger Lets Remote Users Deny Service and Local Users Obtain Potentially Sensitive Heap Memory Contents - SecurityTracker
Jump to