Vulnerabilities > Yard Radius Project > Yard Radius > 1.1.2.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-08-09 | CVE-2013-4147 | USE of Externally-Controlled Format String vulnerability in Yard Radius Project Yard Radius 1.1.24 Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log_msg function in log.c or (2) version or (3) build_version function in version.c. | 7.5 |