|
|
Family: Denial of Service --> Category: destructive_attack
Squid Remote NTLM fakeauth Denial of Service Vulnerability Scan
Vulnerability Scan Summary
Squid Remote NTLM fakeauth Denial of Service
Detailed Explanation for this Vulnerability Test
The remote SQUID server, an open source Proxy server, is vulnerable
to a Denial of Service in the fakeauth NTLM authentication module.
Exploitation of this bug can allow remote attackers to deny access to
legitimate users.
Squid 2.5*-STABLE are reported vulnerable.
See also: http://www.squid-cache.org
Solution: apply the relevant patch from
http://www.squid-cache.org/Versions/v2/2.5/bugs/squid-2.5.STABLE7-fakeauth_auth.patch
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
