|
FreeRADIUS Multiple Vulnerabilities
|
|
Secunia Advisory:
|
SA16712
|
|
|
Release Date:
|
2005-09-08
|
|
Last Update:
|
2006-04-04
|
|
Popularity:
|
9,083 views
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Exposure of sensitive information
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | FreeRADIUS 1.x
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions 
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 1 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Description:
Some vulnerabilities have been reported in FreeRADIUS, which potentially can be exploited by malicious people to disclose certain sensitive information or cause a DoS (Denial of Service).
1) A boundary error in the handling of environment variables in the "radius_exec_program()" function in exec.c can potentially cause a stack-based buffer overflow and crash the system.
2) Off-by-one errors in token.c and sql_unixodbc.c can potentially cause a crash.
3) A boundary error in xlat.c when handling replies from the server may overflow a variable on the stack.
4) An error in validating the results of the "strftime()" function call in xlat.c can cause a memory leak of 40 bytes from the stack.
5) An error in escaping ldap data in rlm_ldap.c may disclose certain ldap data via a malformed query.
The vulnerabilities affect version 1.0.4. Prior versions may also be affected.
Change Page:
[ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
