Lucene search
Ubuntu.comUB:CVE-2005-4744HistoryDec 31, 2005 - 12:00 a.m.
CVE-2005-4744
2005-12-3100:00:00
ubuntu.com
ubuntu.com
5
0.022 Low
EPSS
Percentile
89.5%
Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS
1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote
attackers to cause a denial of service (crash) and possibly execute
arbitrary code by causing the external database query to fail. NOTE: this
single issue is part of a larger-scale disclosure, originally by SUSE,
which reported multiple issues that were disputed by FreeRADIUS. Disputed
issues included file descriptor leaks, memory disclosure, LDAP injection,
and other issues. Without additional information, the most recent
FreeRADIUS report is being regarded as the authoritative source for this
CVE identifier.
Related
nessus
nessus
FreeBSD : freeradius -- multiple vulnerabilities (ec2f2ff5-f710-11da-9156-000e0c2e438a)
2006-06-11 00:00:00
Mandrake Linux Security Advisory : freeradius (MDKSA-2006:066)
2006-04-08 00:00:00
RHEL 3 / 4 : freeradius (RHSA-2006:0271)
2006-04-04 00:00:00
openvas
openvas
FreeBSD Ports: freeradius
2008-09-04 00:00:00
FreeBSD Ports: freeradius
2008-09-04 00:00:00
Debian: Security Advisory (DSA-1089-1)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2005-4744
2005-12-31 05:00:00
cvelist
cvelist
CVE-2005-4744
2006-03-28 11:00:00
freebsd
freebsd
freeradius -- multiple vulnerabilities
2005-09-09 00:00:00
cve
cve
CVE-2005-4744
2005-12-31 05:00:00
redhat
redhat
(RHSA-2006:0271) freeradius security update
2006-04-04 00:00:00
osv
osv
freeradius - several vulnerabilities
2006-06-03 00:00:00
debian
debian
[SECURITY] [DSA 1089-1] New freeradius packages fix arbitrary code execution
2006-06-03 12:27:36
centos
centos
freeradius security update
2006-04-04 12:43:31