Lucene search
Ubuntu.comUB:CVE-2013-2220HistoryJul 31, 2013 - 12:00 a.m.
CVE-2013-2220
2013-07-3100:00:00
ubuntu.com
ubuntu.com
12
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Buffer overflow in the radius_get_vendor_attr function in the Radius
extension before 1.2.7 for PHP allows remote attackers to cause a denial of
service (crash) and possibly execute arbitrary code via a large Vendor
Specific Attributes (VSA) length value.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 12.04 | noarch | php-radius | < 1.2.5-2+squeeze1ubuntu0.12.04.1 | UNKNOWN |
Related
nessus
nessus
Mandriva Linux Security Advisory : php-radius (MDVSA-2013:192)
2013-07-03 00:00:00
Debian DSA-2726-1 : php-radius - buffer overflow
2013-07-28 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2013-0206)
2022-01-28 00:00:00
Debian Security Advisory DSA 2726-1 (php-radius - buffer overflow)
2013-07-25 00:00:00
Debian: Security Advisory (DSA-2726-1)
2013-07-24 00:00:00
cve
cve
CVE-2013-2220
2022-10-03 16:14:59
debiancve
debiancve
CVE-2013-2220
2022-10-03 16:14:59
securityvulns
securityvulns
[ MDVSA-2013:192 ] php-radius
2013-07-08 00:00:00
php-radius buffer overflow
2013-07-08 00:00:00
nvd
nvd
CVE-2013-2220
2013-07-31 13:20:27
osv
osv
php-radius - buffer overflow
2013-07-25 00:00:00
prion
prion
Buffer overflow
2013-07-31 13:20:00
debian
debian
[SECURITY] [DSA 2726-1] php-radius security update
2013-07-25 18:00:42
cvelist
cvelist
CVE-2013-2220
2022-10-03 16:14:59
mageia
mageia
Updated php-radius packages fix CVE-2013-2220
2013-07-09 22:33:38
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.8%
Related for UB:CVE-2013-2220