CVE-2005-0097

The NTLM component in Squid 2.5.STABLE7 and earlier allows remote attackers to cause a denial of service (crash) via a malformed NTLM type 3 message that triggers a NULL dereference.

Affected Software

Name	Vendor	Start Version	End Version
Squid	Squid	2.0_patch2 (including)	2.0_patch2 (including)
Squid	Squid	2.1_patch2 (including)	2.1_patch2 (including)
Squid	Squid	2.3_.stable4 (including)	2.3_.stable4 (including)
Squid	Squid	2.3_.stable5 (including)	2.3_.stable5 (including)
Squid	Squid	2.3_stable5 (including)	2.3_stable5 (including)
Squid	Squid	2.4 (including)	2.4 (including)
Squid	Squid	2.4_.stable2 (including)	2.4_.stable2 (including)
Squid	Squid	2.4_.stable6 (including)	2.4_.stable6 (including)
Squid	Squid	2.4_.stable7 (including)	2.4_.stable7 (including)
Squid	Squid	2.4_stable7 (including)	2.4_stable7 (including)
Squid	Squid	2.5.6 (including)	2.5.6 (including)
Squid	Squid	2.5.stable1 (including)	2.5.stable1 (including)
Squid	Squid	2.5.stable2 (including)	2.5.stable2 (including)
Squid	Squid	2.5.stable3 (including)	2.5.stable3 (including)
Squid	Squid	2.5.stable4 (including)	2.5.stable4 (including)
Squid	Squid	2.5.stable5 (including)	2.5.stable5 (including)
Squid	Squid	2.5.stable6 (including)	2.5.stable6 (including)
Squid	Squid	2.5.stable7 (including)	2.5.stable7 (including)
Squid	Squid	2.5_.stable1 (including)	2.5_.stable1 (including)
Squid	Squid	2.5_.stable3 (including)	2.5_.stable3 (including)
Squid	Squid	2.5_.stable4 (including)	2.5_.stable4 (including)
Squid	Squid	2.5_.stable5 (including)	2.5_.stable5 (including)
Squid	Squid	2.5_.stable6 (including)	2.5_.stable6 (including)
Squid	Squid	2.5_stable3 (including)	2.5_stable3 (including)
Squid	Squid	2.5_stable4 (including)	2.5_stable4 (including)
Squid	Squid	2.5_stable9 (including)	2.5_stable9 (including)
Squid	Squid	2.6.stable1 (including)	2.6.stable1 (including)

NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0097
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html

Affected Software

References