FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

freeradius -- denial-of-service vulnerability

Affected packages
0.8.0 <= freeradius < 1.0.1

Details

VuXML ID 20dfd134-1d39-11d9-9be9-000c6e8f12ef
Discovery 2004-09-20
Entry 2004-10-13
Modified 2004-10-19

A remote attacker may be able to crash the freeRADIUS Server due to three independant bugs in the function which does improper checking values while processing RADIUS attributes.

References

Bugtraq ID 11222
CERT/CC Vulnerability Note 541574
CVE Name CVE-2004-0938
CVE Name CVE-2004-0960
CVE Name CVE-2004-0961
URL http://www.securitytracker.com/alerts/2004/Sep/1011364.html

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.