14 matches found
EUVD-2004-0958
Malware in sbrugna...
CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
DEBIAN-CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
Buffer overflow
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
UBUNTU-CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...
Debian DSA-2726-1 : php-radius - buffer overflow
A buffer overflow has been discovered in the Radius extension for PHP. The function handling Vendor Specific Attributes assumed that the attributes given would always be of valid length. An attacker could use this assumption to trigger a buffer overflow. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2004-0960
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...
DEBIAN-CVE-2004-0960
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...
security flaw
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...
CVE-2004-0960
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...
CVE-2004-0960
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service core dump via malformed USR vendor-specific attributes VSA that cause a memcpy operation with a -1 argument...
Multiple implementations of the RADIUS protocol do not adequately validate the vendor-length of the vendor-specific attributes
Overview Various RADIUS servers and clients permit the passing of vendor-specific and user-specific attributes. Several implementations of RADIUS fail to check the Vendor-Length of the Vendor-Specific attribute. It's possible to cause a denial of service against RADIUS servers with a malformed...