Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 prior to 1.2.94, when compiled with the --enable-snmp option, allows remote malicious users to cause a denial of service (daemon crash) via certain SNMP requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu radius 1.1 |
||
gnu radius 1.2 |
||
gnu radius 0.95 |
||
gnu radius 0.96 |
||
gnu radius 0.92.1 |
||
gnu radius 0.93 |
||
gnu radius 0.94 |