Freeradius Freeradius : Security vulnerabilities, CVEs published in 2003

CVE-2003-0967

rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute.

Max CVSS

5.0

EPSS Score

0.84%

Published

2003-12-15

Updated

2017-10-11

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Freeradius » Freeradius : Security Vulnerabilities, CVEs, Published In 2003

CVE-2003-0967