CVE-2005-4745

Name of the Vulnerable Software and Affected Versions FreeRADIUS versions 1.0.3 through 1.0.4

Description The issue allows remote attackers to execute arbitrary SQL commands, potentially leading to disruption of protected information. This can be exploited remotely. Multiple vulnerabilities in various FreeRADIUS packages for Debian GNU/Linux may also lead to disruption of protected information, with exploitation possible remotely.

Recommendations For FreeRADIUS versions 1.0.3 and 1.0.4, consider updating to a version that fixes the SQL injection vulnerability in the rlm sqlcounter module. At the moment, there is no information about a newer version that contains a fix for this vulnerability in other affected packages.