[email protected]CVE-2001-1376

HistoryMar 04, 2002 - 5:00 a.m.

CVE-2001-1376

2002-03-0405:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2001-1376

buffer overflow

radius

denial of service

remote code execution

nvd.

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.037 Low

EPSS

Percentile

91.7%

JSON

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.

CPENameOperatorVersion
yard_radius:yard_radiusyard radiuseq1.0_pre15
ascend:radiusascend radiuseq1.16
lucent:radiuslucent radiuseq2.0
openradius:openradiusopenradiuseq0.9
openradius:openradiusopenradiuseq0.9.3
icradius:icradiusicradiuseq0.14
gnu:radiusgnu radiuseq0.93
icradius:icradiusicradiuseq0.18
openradius:openradiusopenradiuseq0.8
freeradius:freeradiusfreeradiuseq0.3

CPE	Name	Operator	Version
yard_radius:yard_radius	yard radius	eq	1.0_pre15
ascend:radius	ascend radius	eq	1.16
lucent:radius	lucent radius	eq	2.0
openradius:openradius	openradius	eq	0.9
openradius:openradius	openradius	eq	0.9.3
icradius:icradius	icradius	eq	0.14
gnu:radius	gnu radius	eq	0.93
icradius:icradius	icradius	eq	0.18
openradius:openradius	openradius	eq	0.8
freeradius:freeradius	freeradius	eq	0.3

Rows per page:

1-10 of 401

References

archives.neohapsis.com/archives/linux/suse/2002-q2/0362.html

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000466

marc.info/?l=bugtraq&m=101537153021792&w=2

online.securityfocus.com/archive/1/239784

www.cert.org/advisories/CA-2002-06.html

www.kb.cert.org/vuls/id/589523

www.redhat.com/support/errata/RHSA-2002-030.html

www.securityfocus.com/bid/3530

exchange.xforce.ibmcloud.com/vulnerabilities/7534

8.2 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.037 Low

EPSS

Percentile

91.7%

JSON

Related for CVE-2001-1376

cert1 suse1