Freeradius · Freeradius · CVE-2004-0961
Name of the Vulnerable Software and Affected Versions:
FreeRADIUS versions prior to 1.0.1
Description:
The issue allows remote attackers to cause a denial of service, specifically memory exhaustion, by sending a series of Access-Request packets. These packets can contain attributes such as `Ascend-Send-Secret`, `Ascend-Recv-Secret`, or `Tunnel-Password`.
Recommendations:
For versions prior to 1.0.1, update to version 1.0.1 or later to resolve the issue.