Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Squid < 2.5 STABLE11 NTLM Authentication Header DoS

Low

Synopsis

The remote proxy is vulnerable to a DoS attack.

Description

The remote squid caching proxy, according to its version number, is vulnerable to an attack where an attacker can disable the Squid proxy by sending a malformed NTLM request. Successful exploitation leads to a loss of availability.

Solution

Upgrade to version 2.5 STABLE11 or higher.