Lucene search
HistoryNov 28, 2006 - 2:07 a.m.
CVE-2006-4181
cve-2006-4181
format string vulnerability
gnu radius
sql accounting
remote code execution
nvd
8.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.463 Medium
EPSS
Percentile
97.4%
Format string vulnerability in the sqllog function in the SQL accounting code for radiusd in GNU Radius 1.2 and 1.3 allows remote attackers to execute arbitrary code via unknown vectors.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gnu:radius | gnu radius | eq | 1.2 |
| gnu:radius | gnu radius | eq | 1.3 |
Related
checkpoint_advisories
checkpoint_advisories
GNU Radius SQL Accounting Format String (CVE-2006-4181)
2009-10-27 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200612-17 (gnuradius)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200612-17 (gnuradius)
2008-09-24 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 11.26.06: GNU Radius Format String Vulnerability
2006-11-28 00:00:00
nessus
nessus
GLSA-200612-17 : GNU Radius: Format string vulnerability
2006-12-16 00:00:00
gentoo
gentoo
GNU Radius: Format string vulnerability
2006-12-14 00:00:00
redhatcve
redhatcve
CVE-2006-4181
2015-10-30 09:48:07
8.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.463 Medium
EPSS
Percentile
97.4%
Related for CVE-2006-4181