Squid < 2.5.STABLE11 NTLM Authentication Header DoS
Medium Nessus Network Monitor Plugin ID 3247
SynopsisThe remote proxy server is vulnerable to a DoS attack.
DescriptionThe remote squid caching proxy, according to its version number, is vulnerable to an attack where an attacker can disable the Squid proxy by sending a malformed NTLM request. Successful exploitation leads to a loss of availability.
SolutionUpgrade to version 2.5 STABLE11 or higher.