Family: Denial of Service --> Category: denial
Squid NTLM Authentication Denial Of Service Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks for NTLM authentication denial of service vulnerability in Squid
Detailed Explanation for this Vulnerability Test
The remote web proxy server is prone to denial of service attacks.
The version of Squid, an open-source web proxy cache, installed on the
remote host will abort if it receives a specially-crafted NTLM
challenge packet. A remote attacker can exploit this issue to stop
the affected application, thereby denying access to legitimate users.
See also :
Apply the patch referenced in the bug report or upgrade to Squid
2.5.STABLE11 or later.
Medium / CVSS Base Score : 4
Click HERE for more information and discussions on this network vulnerability scan.