An issue was discovered in Squid before 4.10. It allows a crafted FTP server to trigger disclosure of sensitive information from heap memory, such as information associated with other users sessions or non-Squid processes.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Squid | Squid-cache | * | 4.10 (excluding) |