Squid MSNT Auth Helper Buffer Overflow Vulnerability

A remotely exploitable buffer overflow condition has been reported in the Squid MSNT auth helper component. This condition occurs when msnt_auth is configured to use denyusers or allowusers access control files.

Successful exploitation of this issue may allow for arbitrary code execution as the Squid process. Additionally, this issue may be exploited to trigger a denial of service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus