Vulnerabilities > Freeradius

DATE CVE VULNERABILITY TITLE RISK
2008-10-07 CVE-2008-4474 Link Following vulnerability in Freeradius 2.0.4
freeradius-dialupadmin in freeradius 2.0.4 allows local users to overwrite arbitrary files via a symlink attack on temporary files in (1) backup_radacct, (2) clean_radacct, (3) monthly_tot_stats, (4) tot_stats, and (5) truncate_radacct.
local
low complexity
freeradius CWE-59
7.2
2007-04-13 CVE-2007-2028 Remote Denial Of Service vulnerability in FreeRadius EAP-TTLS Tunnel Memory Leak
Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of EAP-TTLS tunnel connections using malformed Diameter format attributes, which causes the authentication request to be rejected but does not reclaim VALUE_PAIR data structures.
network
low complexity
freeradius
5.0
2006-03-22 CVE-2006-1354 Authentication Bypass vulnerability in FreeRADIUS EAP-MSCHAPv2
Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.
network
low complexity
freeradius
7.5
2005-12-31 CVE-2005-4746 RLM_SQLCounter Buffer Overflow vulnerability in Freeradius 1.0.3/1.0.4
Multiple buffer overflows in FreeRADIUS 1.0.3 and 1.0.4 allow remote attackers to cause denial of service (crash) via (1) the rlm_sqlcounter module or (2) unknown vectors "while expanding %t".
network
low complexity
freeradius
7.8
2005-12-31 CVE-2005-4745 SQL Injection vulnerability in Freeradius 1.0.3/1.0.4
SQL injection vulnerability in the rlm_sqlcounter module in FreeRADIUS 1.0.3 and 1.0.4 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.
network
low complexity
freeradius
7.5
2005-05-19 CVE-2005-1455 Buffer Overflow vulnerability in Freeradius 1.0.2
Buffer overflow in the sql_escape_func function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote attackers to cause a denial of service (crash).
network
low complexity
freeradius
7.5
2005-05-19 CVE-2005-1454 SQL Injection vulnerability in Freeradius 1.0.2
SQL injection vulnerability in the radius_xlat function in the SQL module for FreeRADIUS 1.0.2 and earlier allows remote authenticated users to execute arbitrary SQL commands via (1) group_membership_query, (2) simul_count_query, or (3) simul_verify_query configuration entries.
network
low complexity
freeradius
7.5
2005-02-09 CVE-2004-0961 Attribute Decoding Denial Of Service vulnerability in FreeRADIUS
Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes.
network
low complexity
freeradius redhat
5.0
2005-02-09 CVE-2004-0960 Attribute Decoding Denial Of Service vulnerability in FreeRADIUS
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (core dump) via malformed USR vendor-specific attributes (VSA) that cause a memcpy operation with a -1 argument.
network
low complexity
freeradius redhat
5.0
2004-11-03 CVE-2004-0938 Attribute Decoding Denial Of Service vulnerability in FreeRADIUS
FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (server crash) by sending an Ascend-Send-Secret attribute without the required leading packet.
network
low complexity
freeradius
5.0