|
Family: Gain a shell remotely --> Category: mixed
Squid Remote NTLM auth buffer overflow Vulnerability Scan
Vulnerability Scan Summary Squid Remote NTLM auth buffer overflow
Detailed Explanation for this Vulnerability Test
The remote server is vulnerable to a remote buffer overflow in
the NTLM authentication routine. Exploitation of this bug
can allow remote attackers to gain access to confidential
data. Squid 2.5*-STABLE and 3.*-PRE are reported vulnerable.
See also: http://www.squid-cache.org
Solution: apply the relevant patch from
http://www.squid-cache.org/~wessels/patch/libntlmssp.c.patch
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|