FreeRADIUS prior to 1.0.1 allows remote malicious users to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA) that cause a memcpy operation with a -1 argument.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
freeradius freeradius 0.3 |
||
freeradius freeradius 0.4 |
||
freeradius freeradius 0.9.3 |
||
freeradius freeradius 1.0.0 |
||
freeradius freeradius 0.5 |
||
freeradius freeradius 0.8 |
||
freeradius freeradius 0.8.1 |
||
freeradius freeradius 0.9 |
||
freeradius freeradius 0.2 |
||
freeradius freeradius 0.9.1 |
||
freeradius freeradius 0.9.2 |
||
redhat enterprise linux 3.0 |
||
redhat fedora core core_2.0 |
Vulmon