CVE ID:	CAN-2005-2917
Description:	Squid 2.5.STABLE10 and earlier, while performing NTLM authentication, does not properly handle certain request sequences, which allows attackers to cause a denial of service (daemon restart).
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2917 Debian Security Information: DSA-828 (Google Search) http://www.debian.org/security/2005/dsa-828 http://fedoranews.org/updates/FEDORA--.shtml http://www.mandriva.com/security/advisories?name=MDKSA-2005:181 RedHat Security Advisories: RHSA-2006:0045 http://www.redhat.com/support/errata/RHSA-2006-0045.html RedHat Security Advisories: RHSA-2006:0052 http://www.redhat.com/support/errata/RHSA-2006-0052.html SCO Security Bulletin: SCOSA-2005.49 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt SGI Security Advisory: 20060401-01-U ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U SuSE Security Announcement: SUSE-SR:2005:027 (Google Search) http://www.novell.com/linux/security/advisories/2005_27_sr.html http://www.ubuntu.com/usn/usn-192-1/ BugTraq ID: 14977 http://www.securityfocus.com/bid/14977 http://www.osvdb.org/19607 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11580 http://securitytracker.com/id?1014920 http://secunia.com/advisories/16992 http://secunia.com/advisories/17015 http://secunia.com/advisories/19161 http://secunia.com/advisories/17050 http://secunia.com/advisories/17177 http://secunia.com/advisories/19532 XForce ISS Database: squid-ntlm-authentication-dos(24282) http://xforce.iss.net/xforce/xfdb/24282

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: