Definition

NTLM Authentication BO in Squid Web Proxy Cache

oval:org.mitre.oval:def:980

Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x when compiled with NTLM handlers enabled allows remote attackers to execute arbitrary code via a long password ("pass" variable).

Family:

unix

Status:

ACCEPTED

Platform(s):

Red Hat Enterprise Linux 3

Class:

vulnerability

Reference(s):

CVE-2004-0541

Product(s):