Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / Denial of Service / Squid NTLM Authentication Denial Of Service Vulnerability
server monitoring

Squid NTLM Authentication Denial Of Service Vulnerability
Article ID: 20010
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 434
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

Squid NTLM Authentication Denial Of Service Vulnerability
This script is Copyright (C) 2005-2007 Tenable Network Security

FamilyDenial of Service
Plugin ID20010
Bugtraq ID14977
CVE IDCVE-2005-2917

Description:

Synopsis :

The remote web proxy server is prone to denial of service attacks.

Description :

The version of Squid, an open-source web proxy cache, installed on the
remote host will abort if it receives a specially-crafted NTLM
challenge packet. A remote attacker can exploit this issue to stop
the affected application, thereby denying access to legitimate users.

See also :

http://www.squid-cache.org/bugs/show_bug.cgi?id=1391

Solution :

Apply the patch referenced in the bug report or upgrade to Squid
2.5.STABLE11 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
This article was:   Helpful | Not Helpful
Prev   Next
Abyss Web Server Malformed GET Request Remote DoS     TYPSoft FTP 1.10

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events