Squid Proxy < 2.5.STABLE8 Multiple Vulnerabilities

Low Log Correlation Engine Plugin ID 801048


The remote host is vulnerable to a Denial of Service (DoS) attack.


The remote Squid caching proxy, according to its version number, may be vulnerable to a remote denial of service.

This flaw is caused due to an input validation error in the NTLM module.

An attacker can exploit this flaw to crash the server with a specially crafted packet.

The remote Squid proxy is also vulnerable to a cache-corruption flaw due to incorrect parsing of malformed HTTP headers. An attacker exploiting this flaw would be able to poison the cache.

The remote Squid proxy is vulnerable to an authentication bypass
in the squid_ldap_auth module as well as a remote overflow due to oversized HTTP headers.


Upgrade to Squid 2.5.STABLE8 or higher.

See Also


Plugin Details

Severity: Low

ID: 801048

File Name: 801048.prm

Family: Web Servers

Risk Information

Risk Factor: Low


Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:ND

Reference Information

CVE: CVE-2005-0241, CVE-2005-0096, CVE-2005-0173, CVE-2005-0174, CVE-2005-0097, CVE-2005-0175, CVE-2005-0211

BID: 12220, 12324, 12412, 12431, 12432, 12433