CVE-2004-0541

Name of the Vulnerable Software and Affected Versions Squid Web Proxy Cache versions 2.5.x through 3.x

Description The issue is related to a buffer overflow in the ntlm check auth function, which is used for NTLM authentication. This allows remote attackers to execute arbitrary code by providing a long password, specifically through the pass variable.

Recommendations For Squid Web Proxy Cache versions 2.5.x through 3.x, consider disabling NTLM authentication until a patch is available. Restrict access to the ntlm check auth function to minimize the risk of exploitation. Avoid using long passwords, especially those that could trigger the buffer overflow, until the issue is resolved.