|
|
CVE Reference: CVE-2004-0541 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2004-0541 |
|
|
Description: Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable). |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/16360 TRUSTIX http://www.trustix.net/errata/2004/0033/ SUSE SGI REDHAT http://www.redhat.com/support/errata/RHSA-2004-242.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10722 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:980 MISC http://www.idefense.com/application/poi/display?id=107&type=vulnerabilities MANDRAKE http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:059 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200406-13.xml FEDORA http://fedoranews.org/updates/FEDORA--.shtml BID 10500 |
|
| Return to the previous page. |
