This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
The LDAP authentication helper did not strip leading or trailing
spaces from the login name. According to the squid patches page :
LDAP is very forgiving about spaces in search filters and this could
be abused to log in using several variants of the login name, possibly
bypassing explicit access controls or confusing accounting.
Workaround: Block logins with spaces
acl login_with_spaces proxy_auth_regex [:space:] http_access deny
See also :
Update the affected package.
Risk factor :
High / CVSS Base Score : 7.5