icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Squid < 2.5 STABLE11 NTLM Authentication Header DoS

Low

Synopsis

The remote proxy is vulnerable to a DoS attack.

Description

The remote squid caching proxy, according to its version number, is vulnerable to an attack where an attacker can disable the Squid proxy by sending a malformed NTLM request. Successful exploitation leads to a loss of availability.

Solution

Upgrade to version 2.5 STABLE11 or higher.