CVSS: 7.5EPSS: 1%CPEs: 14EXPL: 0CVE-2004-0961
https://notcve.org/view.php?id=CVE-2004-0961
20 Oct 2004 — Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes. • http://security.gentoo.org/glsa/glsa-200409-29.xml •
CVSS: 7.5EPSS: 56%CPEs: 1EXPL: 0CVE-2004-0938
https://notcve.org/view.php?id=CVE-2004-0938
16 Oct 2004 — FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute without the required leading packet. FreeRADIUS anteriores a 1.0.1 permite a atacantes remotos causar una denegación de servicio (caída del servidor) enviando un atributo Ascend-Send-Secret sin el paquete de encabezado requerido. • http://security.gentoo.org/glsa/glsa-200409-29.xml •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2003-0967 – FreeRadius 0.x/1.1.x - Tag Field Heap Corruption
https://notcve.org/view.php?id=CVE-2003-0967
02 Dec 2003 — rad_decode in FreeRADIUS 0.9.2 and earlier allows remote attackers to cause a denial of service (crash) via a short RADIUS string attribute with a tag, which causes memcpy to be called with a -1 length argument, as demonstrated using the Tunnel-Password attribute. rad_decode en FreeRADIUS 0.9.2 y anteriores permite a atacantes remotos causar una denegación de servicio (caída) mediante una cadena de atributo RADIUS corta con una etiqueta, lo que hace se llame a memcpy con un argumento de longitud -1, como se... • https://www.exploit-db.com/exploits/23391 •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2003-0968
https://notcve.org/view.php?id=CVE-2003-0968
02 Dec 2003 — Stack-based buffer overflow in SMB_Logon_Server of the rlm_smb experimental module for FreeRADIUS 0.9.3 and earlier allows remote attackers to execute arbitrary code via a long User-Password attribute. Desbordamiento de búfer en la pila en SMB_Logon_Server del módulo experimental rlm_smb de FreeRADIUS 0.9.3 y anteriores permite a atacantes remotos ejecutar código arbitrario mediante un atributo User-Password largo. • http://marc.info/?l=bugtraq&m=106986437621130&w=2 •
CVSS: 9.8EPSS: 4%CPEs: 40EXPL: 0CVE-2001-1376
https://notcve.org/view.php?id=CVE-2001-1376
04 Mar 2002 — Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data. • http://archives.neohapsis.com/archives/linux/suse/2002-q2/0362.html •
CVSS: 7.5EPSS: 0%CPEs: 40EXPL: 0CVE-2001-1377
https://notcve.org/view.php?id=CVE-2001-1377
04 Mar 2002 — Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:02.asc •