Squid NTLM Authenticate Overflow

vendor:

Squid

by:

skape

N/A

CVSS

N/A

Buffer Overflow

119

CWE

Product Name: Squid

Affected Version From: Unknown

Affected Version To: Unknown

Patch Exists: NO

Related CWE: CVE-2004-0541

CPE: Unknown

Metasploit: https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2004-0541/, https://www.rapid7.com/db/vulnerabilities/freebsd-vid-6f955451-ba54-11d8-b88c-000d610a3b12/

Other Scripts:

Platforms Tested: Linux

2004

Squid NTLM Authenticate Overflow

This is an exploit for Squid's NTLM authenticate overflow (libntlmssp.c). Due to improper bounds checking in ntlm_check_auth, it is possible to overflow the 'pass' variable on the stack with user controlled data of a user defined length. Props to iDEFENSE for the advisory.

Mitigation:

Unknown

Source

Squid NTLM Authenticate Overflow

Mitigation:

Exploit-DB raw data: