Squid NTLM Component fakeauth Multiple Remote DoS

This script is Copyright (C) 2005-2011 Tenable Network Security, Inc.

Synopsis :

The remote service is vulnerable to a denial of service.

Description :

The remote SQUID server, an open source Proxy server, is vulnerable
to a Denial of Service in the fakeauth NTLM authentication module.

Exploitation of this bug can allow remote attackers to deny access to
legitimate users.

Squid 2.5*-STABLE are reported vulnerable.

See also :


Solution :

Apply the relevant patch from

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 3.7
Public Exploit Available : false

Family: Firewalls

Nessus Plugin ID: 16163 ()

Bugtraq ID: 12220

CVE ID: CVE-2005-0096