CVE-2010-3696

Gentoo Linux Security Advisory 201311-09

Severity Score

7.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.

La función fr_dhcp_decode en lib/dhcp.c en FreeRADIUS v2.1.9, en determinadas compilaciones (no por defecto), no maneja adecuadamente la opción DHCP Relay Agent Information, lo cual permite a atacantes remotos provocar una denegación de servicio (bucle infinito y corte del servicio) a través de un paquete que tiene más de una sub-opción. NOTA: algunos de estos detalles han sido obtenidos de información de terceros.

Multiple vulnerabilities have been found in FreeRADIUS, the worst of which allow execution of arbitrary code or Denial of Service. Versions less than 2.2.0 are affected.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-10-01 CVE Reserved
2010-10-07 CVE Published
2024-08-07 CVE Updated
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-399: Resource Management Errors

CAPEC

References (7)

URL	Tag	Source
http://freeradius.org/press/index.html#2.1.10	X_refsource_confirm
http://www.openwall.com/lists/oss-security/2010/10/01/3	Mailing List
http://www.openwall.com/lists/oss-security/2010/10/01/8	Mailing List
https://bugzilla.redhat.com/show_bug.cgi?id=639390	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC
http://github.com/alandekok/freeradius-server/commit/4dc7800b866f889a1247685bbaa6dd4238a56279	2023-11-07
https://bugs.freeradius.org/bugzilla/show_bug.cgi?id=77	2023-11-07

URL	Date	SRC
http://secunia.com/advisories/41621	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Freeradius Search vendor "Freeradius"		Freeradius Search vendor "Freeradius" for product "Freeradius"				2.1.9 Search vendor "Freeradius" for product "Freeradius" and version "2.1.9"		-		Affected