Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

security flaw

🗓️ 10 May 2007 16:03:00Reported by RedHatType 
redhat
 redhat🔗 access.redhat.com👁 1 Views

Memory leak in freeRADIUS 1.1.5 and earlier enables remote DoS via many EAP-TTLS tunnels with malformed Diameter attributes; VALUE_PAIR not reclaimed.

Related
Packages
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2007-2028
13 Apr 200718:19
attackerkb
Tenable Nessus		CentOS 3 / 4 / 5 : freeradius (CESA-2007:0338)
11 May 200700:00
nessus
Tenable Nessus		Fedora Core 6 : freeradius-1.1.3-2.fc6 (2007-499)
16 May 200700:00
nessus
Tenable Nessus		FreeBSD : freeradius -- EAP-TTLS Tunnel Memory Leak Remote DOS Vulnerability (c110eda2-e995-11db-a944-0012f06707f0)
19 Apr 200700:00
nessus
Tenable Nessus		GLSA-200704-14 : FreeRADIUS: Denial of Service
19 Apr 200700:00
nessus
Tenable Nessus		Mandrake Linux Security Advisory : freeradius (MDKSA-2007:085)
19 Apr 200700:00
nessus
Tenable Nessus		Oracle Linux 5 : Moderate: / freeradius (ELSA-2007-0338)
12 Jul 201300:00
nessus
Tenable Nessus		RHEL 3 / 4 / 5 : freeradius (RHSA-2007:0338)
11 May 200700:00
nessus
Tenable Nessus		Scientific Linux Security Update : freeradius on SL3.0.x , SL4.x, SL5.x
1 Aug 201200:00
nessus
Tenable Nessus		SuSE9 Security Update : freeradius (YOU Patch Number 11512)
24 Sep 200900:00
nessus
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Red Hat Enterprise Linux3i386freeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.i386.rpm
Red Hat Enterprise Linux3ia64freeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.ia64.rpm
Red Hat Enterprise Linux3ppcfreeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.ppc.rpm
Red Hat Enterprise Linux3s390freeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.s390.rpm
Red Hat Enterprise Linux3s390xfreeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.s390x.rpm
Red Hat Enterprise Linux3x86_64freeradius0:1.0.1-2.RHEL3.4freeradius-0:1.0.1-2.RHEL3.4.x86_64.rpm
Red Hat Enterprise Linux4i386freeradius0:1.0.1-3.RHEL4.5freeradius-0:1.0.1-3.RHEL4.5.i386.rpm
Red Hat Enterprise Linux4ia64freeradius0:1.0.1-3.RHEL4.5freeradius-0:1.0.1-3.RHEL4.5.ia64.rpm
Red Hat Enterprise Linux4ppcfreeradius0:1.0.1-3.RHEL4.5freeradius-0:1.0.1-3.RHEL4.5.ppc.rpm
Red Hat Enterprise Linux4s390freeradius0:1.0.1-3.RHEL4.5freeradius-0:1.0.1-3.RHEL4.5.s390.rpm
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
25 Jun 2026 10:33Current
5.8Medium risk
Vulners AI Score5.8
CVSS 25
EPSS0.02476
free radiusmemory leakeap ttsl tunnelsdiameter attributesvalue pair data
1