FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

squid -- NTLM authentication denial-of-service vulnerability

Affected packages
squid < 2.5.7

Details

VuXML ID 064225c5-1f53-11d9-836a-0090962cff2a
Discovery 2004-08-18
Entry 2004-10-18

A remote attacker is able to cause a denial-of-service situation, when NTLM authentication is enabled in squid. NTLM authentication uses two functions which lack correct offset checking.

References

CVE Name CVE-2004-0832
URL http://www.squid-cache.org/bugs/show_bug.cgi?id=1045

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.