Lucene search
HistoryDec 23, 2004 - 5:00 a.m.
CVE-2004-0849
cve-2004-0849
gnu radius
security vulnerability
denial of service
integer overflow
snmp
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
81.0%
Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cause a denial of service (daemon crash) via certain SNMP requests.
Affected configurations
Node
gnuradiusMatch0.92.1
ORgnuradiusMatch0.93
ORgnuradiusMatch0.94
ORgnuradiusMatch0.95
ORgnuradiusMatch0.96
ORgnuradiusMatch1.1
ORgnuradiusMatch1.2
Related
freebsd
freebsd
gnu-radius -- SNMP-related denial-of-service
2004-09-15 00:00:00
nessus
nessus
nvd
nvd
CVE-2004-0849
2004-12-23 05:00:00
securityvulns
securityvulns
openvas
openvas
FreeBSD Ports: gnu-radius
2008-09-04 00:00:00
FreeBSD Ports: gnu-radius
2008-09-04 00:00:00
cvelist
cvelist
CVE-2004-0849
2004-09-17 04:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.007 Low
EPSS
Percentile
81.0%
Related for CVE-2004-0849