PT-2004-1979 · Freeradius · Freeradius
Alan T. Dekok
·
Publicado
2004-10-20
·
Atualizado
2017-10-11
·
CVE-2004-0961
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
FreeRADIUS versions prior to 1.0.1
Description:
The issue allows remote attackers to cause a denial of service, specifically memory exhaustion, by sending a series of Access-Request packets. These packets can contain attributes such as
Ascend-Send-Secret, Ascend-Recv-Secret, or Tunnel-Password.Recommendations:
For versions prior to 1.0.1, update to version 1.0.1 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Freeradius