iDEFENSE Security Advisory 06.08.04: A remote attacker can compromise a target system if Squid Proxy is configured to use the NTLM authentication helper. The attacker can send an overly long password to overflow the buffer and execute arbitrary code.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/33527/06.08.04.txt
Source: https://packetstormsecurity.com/files/33527/iDEFENSE-Security-Advisory-2004-06-08.t.html