CVE-2004-0541
Squid NTLM Authenticate Overflow
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Buffer overflow in the ntlm_check_auth (NTLM authentication) function for Squid Web Proxy Cache 2.5.x and 3.x, when compiled with NTLM handlers enabled, allows remote attackers to execute arbitrary code via a long password ("pass" variable).
Desbordamiento de búfer en la función ntlm_check_auth (autenticación NTLM) de Squid Web Proxy Cache 2.5.x y 3.x, cuando se compila con manejadores NTLM activados, permite a atacantes remotos ejecutar código de su elección mediante una contraseña larga (variable "pass")
iDEFENSE Security Advisory 06.08.04: A remote attacker can compromise a target system if Squid Proxy is configured to use the NTLM authentication helper. The attacker can send an overly long password to overflow the buffer and execute arbitrary code.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2004-06-04 CVE Reserved
- 2004-06-08 First Exploit
- 2004-06-10 CVE Published
- 2024-08-08 CVE Updated
- 2025-08-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (17)
URL | Date | SRC |
---|---|---|
https://packetstorm.news/files/id/82249 | 2009-10-27 | |
https://www.exploit-db.com/exploits/16847 | 2011-03-06 | |
https://www.exploit-db.com/exploits/9951 | 2004-06-08 |
URL | Date | SRC |
---|---|---|
http://www.gentoo.org/security/en/glsa/glsa-200406-13.xml | 2018-05-03 | |
http://www.idefense.com/application/poi/display?id=107&type=vulnerabilities | 2018-05-03 | |
http://www.redhat.com/support/errata/RHSA-2004-242.html | 2018-05-03 |
URL | Date | SRC |
---|---|---|
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc | 2018-05-03 | |
http://fedoranews.org/updates/FEDORA--.shtml | 2018-05-03 | |
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:059 | 2018-05-03 | |
http://www.trustix.net/errata/2004/0033 | 2018-05-03 | |
https://access.redhat.com/security/cve/CVE-2004-0541 | 2004-06-09 | |
https://bugzilla.redhat.com/show_bug.cgi?id=1617226 | 2004-06-09 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
National Science Foundation Search vendor "National Science Foundation" | Squid Web Proxy Cache Search vendor "National Science Foundation" for product "Squid Web Proxy Cache" | 2.5_stable Search vendor "National Science Foundation" for product "Squid Web Proxy Cache" and version "2.5_stable" | - |
Affected
| ||||||
National Science Foundation Search vendor "National Science Foundation" | Squid Web Proxy Cache Search vendor "National Science Foundation" for product "Squid Web Proxy Cache" | 3_pre Search vendor "National Science Foundation" for product "Squid Web Proxy Cache" and version "3_pre" | - |
Affected
|