CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-5408

Stack-based buffer overflow in the munge_other_line function in cachemgr.cgi in the squid package before 3.1.23-16.el6_8.6 in Red Hat Enterprise Linux 6 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-4051.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.054

EPSS Ranking 89.6%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://rhn.redhat.com/errata/RHSA-2016-1573.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
http://rhn.redhat.com/errata/RHSA-2016-1573.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html

Products affected by CVE-2016-5408

Oracle » Linux » Version: 6

cpe:2.3:o:oracle:linux:6
Redhat » Enterprise Linux Server » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_server:6.0
Redhat » Enterprise Linux Workstation » Version: 6.0

cpe:2.3:o:redhat:enterprise_linux_workstation:6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-5408

Products

Pricing

Contact Us