Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote malicious users to execute arbitrary code via a long password ("pass" variable).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
national science foundation squid web proxy cache 2.5_stable |
||
national science foundation squid web proxy cache 3_pre |