Upgrade to version 1.0.21 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Vendor URL: http://yardradius.org/
Secunia Advisory ID:13313
Secunia Advisory ID:13312
Other Advisory URL: http://www.debian.org/security/2004/dsa-598