This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
Security Fix(es) :
- It was found that the fix for CVE-2016-4051 released via
SLSA-2016:1138 did not properly prevent the stack
overflow in the munge_other_line() function. A remote
attacker could send specially crafted data to the Squid
proxy, which would exploit the cachemgr CGI utility,
possibly triggering execution of arbitrary code.
See also :
Update the affected squid and / or squid-debuginfo packages.
Risk factor :
High / CVSS Base Score : 7.5