11 matches found
Oracle Linux 5 : Moderate: / freeradius (ELSA-2007-0338)
The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2007-0338 advisory. 1.0.1-3.RHEL4.5 - fixed CVE-2007-2028: EAP-TTLS denial of service Resolves: rhbz236247 Tenable has extracted the preceding description block directly from the...
SLES9: Security update for freeradius
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: freeradius freeradius-devel For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...
SLES9: Security update for freeradius
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: freeradius freeradius-devel For more information, please visit the referenced security advisories. More details may also be found by searching for keyword...
Mandriva Update for freeradius MDKSA-2007:085 (freeradius)
Check for the Version of freeradius OpenVAS Vulnerability Test Mandriva Update for freeradius MDKSA-2007:085 freeradius Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
Gentoo Security Advisory GLSA 200704-14 (FreeRADIUS)
The remote host is missing updates announced in advisory GLSA 200704-14. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
SuSE 10 Security Update : freeradius (ZYPP Patch Number 3287)
A memory leak in the code for handling EAP-TTLS tunnels could be exploited by attackers to crash freeradius. CVE-2007-2028 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if descripti...
openSUSE 10 Security Update : freeradius (freeradius-3286)
A memory leak in the code for handling EAP-TTLS tunnels could be exploited by attackers to crash freeradius CVE-2007-2028. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update freeradius-3286. The...
Moderate: freeradius security update
1.0.1-3.RHEL4.5 - fixed CVE-2007-2028: EAP-TTLS denial of service Resolves: rhbz236247...
CVE-2007-2028
Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service memory consumption via a large number of EAP-TTLS tunnel connections using malformed Diameter format attributes, which causes the authentication request to be rejected but does not reclaim VALUEPAIR...
CVE-2007-2028
Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service memory consumption via a large number of EAP-TTLS tunnel connections using malformed Diameter format attributes, which causes the authentication request to be rejected but does not reclaim VALUEPAIR...
CVE-2007-2028
The CVE-2007-2028 entry concerns FreeRADIUS up to version 1.1.5 (and earlier) with a memory leak in EAP-TTLS tunnel handling. A remote attacker can send large numbers of authentication requests using malformed Diameter format attributes, causing the server to consume memory and potentially trigge...