Squid Proxy Malformed NTLM Type 3 Message Remote Denial of Service Vulnerability

Squid Proxy Malformed NTLM Type 3 Message Remote Denial of Service Vulnerability

Squid is reported to be susceptible to a denial-of-service vulnerability in its NTLM authentication module. This vulnerability presents itself when an attacker sends a malformed NTLM Type 3 message to Squid.

Failure of NTLM authentication would result in the Squid application denying access to legitimate users of the proxy.

This vulnerability affects Squid 2.5.