Linux Distros Unpatched Vulnerability : CVE-2011-4966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in...

CVE-2011-4966 affecting package freeradius 3.2.3-2

CVE-2011-4966 affecting package freeradius 3.2.3-2. No patch is available currently...

Oracle: Security Advisory (ELSA-2013-0134)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : freeradius-server (openSUSE-SU-2013:0137-1)

fix for CVE-2011-4966 bnc797313 freeradius-server-CVE-2011-4966.patch - fixed a bug in the logrotate script bnc797292 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-37. The text...

Ubuntu: Security Advisory (USN-2122-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : freeradius vulnerabilities (USN-2122-1)

It was discovered that FreeRADIUS incorrectly handled unix authentication. A remote user could successfully authenticate with an expired password. CVE-2011-4966 Pierre Carrier discovered that FreeRADIUS incorrectly handled rlmpap hash processing. An authenticated user could use this issue to caus...

CVE-2011-4966

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

AZL-7231 CVE-2011-4966 affecting package freeradius 3.2.3-2

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

CVE-2011-4966

modules/rlmunix/rlmunix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password...

CVE-2011-4966

CVE-2011-4966 affects FreeRADIUS prior to 2.2.0, where rlm_unix.c in unix authentication mode does not correctly check password expiration in /etc/shadow. This allows remote authenticated users to authenticate using an expired password. Connected advisories and patches reference a fix/patch for o...

CentOS Update for freeradius2 CESA-2013:0134 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS 5 : freeradius2 (CESA-2013:0134)

Updated freeradius2 packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severi...