Lucene search
HistoryAug 07, 2003 - 4:00 a.m.
CVE-2003-0450
cistron radius daemon
radiusd-cistron
cve-2003-0450
denial of service
buffer overflow
security vulnerability
nas-port attribute
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.034 Low
EPSS
Percentile
91.5%
Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow.
Affected configurations
Node
cistronradius_daemonRange≤1.6.6
| CPE | Name | Operator | Version |
|---|---|---|---|
| cistron:radius_daemon | cistron radius daemon | le | 1.6.6 |
Related
osv
osv
radiusd-cistron - buffer overflow
2003-06-13 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-321)
2008-01-17 00:00:00
Debian Security Advisory DSA 321-1 (radiusd-cistron)
2008-01-17 00:00:00
cvelist
cvelist
CVE-2003-0450
2003-06-20 04:00:00
suse
suse
possible remote system compromise in radiusd-cistron
2003-06-13 13:25:00
nvd
nvd
CVE-2003-0450
2003-08-07 04:00:00
nessus
nessus
Debian DSA-321-1 : radiusd-cistron - buffer overflow
2004-09-29 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
High
0.034 Low
EPSS
Percentile
91.5%
Related for CVE-2003-0450