Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freeradius freeradius vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4746
Multiple buffer overflows in FreeRADIUS 1.0.3 and 1.0.4 allow remote malicious users to cause denial of service (crash) via (1) the rlm_sqlcounter module or (2) unknown vectors "while expanding %t".
Freeradius Freeradius 1.0.4
Freeradius Freeradius 1.0.3
NA
CVE-2005-1454
SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and previous versions allows remote authenticated users to execute arbitrary SQL commands via (1) group_membership_query, (2) simul_count_query, or (3) simul_verify_query configuration ...
Freeradius Freeradius 1.0.2
NA
CVE-2005-1455
Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and previous versions allows remote malicious users to cause a denial of service (crash).
Freeradius Freeradius 1.0.2
NA
CVE-2004-0960
FreeRADIUS prior to 1.0.1 allows remote malicious users to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA) that cause a memcpy operation with a -1 argument.
Freeradius Freeradius 1.0.0
Freeradius Freeradius 0.9
Freeradius Freeradius 0.9.2
Freeradius Freeradius 0.3
Freeradius Freeradius 0.9.1
Freeradius Freeradius 0.4
Freeradius Freeradius 0.8.1
Freeradius Freeradius 0.5
Freeradius Freeradius 0.2
Freeradius Freeradius 0.8
Freeradius Freeradius 0.9.3
Redhat Fedora Core Core 2.0
Redhat Enterprise Linux 3.0
NA
CVE-2004-0961
Memory leak in FreeRADIUS prior to 1.0.1 allows remote malicious users to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes.
Freeradius Freeradius 1.0.0
Freeradius Freeradius 0.9
Freeradius Freeradius 0.9.2
Freeradius Freeradius 0.3
Freeradius Freeradius 0.9.1
Freeradius Freeradius 0.4
Freeradius Freeradius 0.8.1
Freeradius Freeradius 0.5
Freeradius Freeradius 0.2
Freeradius Freeradius 0.8
Freeradius Freeradius 0.9.3
Redhat Fedora Core Core 2.0
Redhat Enterprise Linux 3.0
NA
CVE-2004-0938
FreeRADIUS prior to 1.0.1 allows remote malicious users to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute without the required leading packet.
Freeradius Freeradius
NA
CVE-2003-0967
rad_decode in FreeRADIUS 0.9.2 and previous versions allows remote malicious users to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute.
Freeradius Freeradius
1 EDB exploit
NA
CVE-2003-0968
Stack-based buffer overflow in SMB_Logon_Server of the rlm_smb experimental module for FreeRADIUS 0.9.3 and previous versions allows remote malicious users to execute arbitrary code via a long User-Password attribute.
NA
CVE-2002-0318
FreeRADIUS RADIUS server allows remote malicious users to cause a denial of service (CPU consumption) via a flood of Access-Request packets.
Freeradius Freeradius
NA
CVE-2001-1376
Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote malicious users to cause a denial of service and possibly execute arbitrary code via shared secret data.
Yard Radius Yard Radius 1.0 Pre15
Ascend Radius 1.16
Lucent Radius 2.0
Openradius Openradius 0.9
Openradius Openradius 0.9.3
Icradius Icradius 0.14
Gnu Radius 0.93
Icradius Icradius 0.18
Openradius Openradius 0.8
Freeradius Freeradius 0.3
Icradius Icradius 0.15
Lucent Radius 2.1
Miquel Van Smoorenburg Cistron Radius 1.6.4
Gnu Radius 0.95
Icradius Icradius 0.18.1
Xtradius Xtradius 1.1 Pre1
Lucent Radius 2.0.1
Livingston Radius 2.0.1
Icradius Icradius 0.17
Icradius Icradius 0.16
Icradius Icradius 0.17b
Gnu Radius 0.94
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »