Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2003-0967

Published: 15/12/2003 Updated: 11/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Freeradius

Vulnerability Summary

rad_decode in FreeRADIUS 0.9.2 and previous versions allows remote malicious users to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute.

Vulnerable Product Search on Vulmon Subscribe to Product

freeradius freeradius

Exploits

Exploit DB: FreeRadius 0.x/1.1.x - Tag Field Heap Corruption
source: wwwsecurityfocuscom/bid/9079/info FreeRADIUS is prone to a heap-corruption vulnerability when handling of tag-field input An attacker may be able to exploit this issue to deny service to legitimate users of a vulnerable FreeRADIUS server This issue was initially reported as a vulnerability in how the software handles 'Tunnel-Pa ...

References

NVD-CWE-Otherhttp://www.redhat.com/support/errata/RHSA-2003-386.htmlhttp://marc.info/?l=freeradius-users&m=106947389449613&w=2http://marc.info/?l=bugtraq&m=106944220426970http://marc.info/?l=bugtraq&m=106935911101493&w=2https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10917https://nvd.nist.govhttps://www.exploit-db.com/exploits/23391/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook