### [CVE-2016-4053](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4053) ![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue) ![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue) ![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen) ### Description Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization. ### POC #### Reference - http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html - http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html - http://www.securityfocus.com/bid/86788 - http://www.securityfocus.com/bid/91787 #### Github No PoCs found on GitHub currently.