CVE-2001-0534

CVE-2001-0534 concerns buffer overflows in radiusd. Connected documents show a related, later issue: yardradius (YARD radius server) with a stack/remote overflow that could allow execution of arbitrary code as root. Debian’s DSA-598-1 (CAN-2004-0987) states yardradius is vulnerable to a remote st...

CVE-2001-1376

CVE-2001-1376 describes a buffer overflow in the RADIUS digest calculation function across multiple implementations. The overflow occurs while concatenating the shared secret with the received packet during digest computation, enabling remote denial of service and, in some cases, arbitrary code e...

CVE-2001-1377

CVE-2001-1377 affects multiple RADIUS implementations that fail to validate the Vendor-Length of Vendor-Specific attributes, enabling a remote attacker to crash the server when Vendor-Length

CVE-2001-1081

Vulnerability details: CVE-2001-1081 concerns Livingston/Lucent RADIUS prior to 2.1.va.1, where format string vulnerabilities in log message handling can allow local or remote attackers to cause a denial of service and potentially execute arbitrary code via crafted format specifiers. The provided...

CVE-2001-1082

CVE-2001-1082 describes a directory traversal vulnerability in Livingston/Lucent RADIUS prior to 2.1.va.1, allowing an attacker to read arbitrary files via a .. (dot dot) path traversal attack. Affected component is the RADIUS service; root cause is improper input validation in file access logic....