Squid Proxy NTLM Authentication Buffer Overflow Vulnerability

Squid Proxy NTLM Authentication Buffer Overflow Vulnerability

Squid Web Proxy Cache is reportedly affected by a buffer-overflow vulnerability when processing NTLM authentication credentials. The application fails to properly validate buffer boundaries when copying user-supplied input.

This would allow an attacker to modify stack-based process memory to cause a denial-of-service condition and execute arbitrary code in the context of the vulnerable web proxy. This will most likely facilitate unauthorized access to the affected computer.