CVE-2013-2220
Buffer overflow in the radiusgetvendorattr function in the Radius extension before 1.2.7 for PHP allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large Vendor Specific Attributes VSA length value...