CVE-2004-0987

2005-01-1005:00:00

[email protected]

web.nvd.nist.gov

cve-2004-0987

buffer overflow

yardradius

remote code execution

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.4 High

AI Score

Confidence

Low

0.025 Low

EPSS

Percentile

90.3%

JSON

Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code.

Affected configurations

NVD

Node

yard_radiusyard_radiusMatch1.0.17

yard_radiusyard_radiusMatch1.0.18

yard_radiusyard_radiusMatch1.0.19

yard_radiusyard_radiusMatch1.0.20

yard_radiusyard_radiusMatch1.0_pre13

yard_radiusyard_radiusMatch1.0_pre14

yard_radiusyard_radiusMatch1.0_pre15

yard_radius_projectyard_radiusMatch1.0.16

CPENameOperatorVersion
yard_radius:yard_radiusyard radiuseq1.0.17
yard_radius:yard_radiusyard radiuseq1.0.18
yard_radius:yard_radiusyard radiuseq1.0.19
yard_radius:yard_radiusyard radiuseq1.0.20
yard_radius:yard_radiusyard radiuseq1.0_pre13
yard_radius:yard_radiusyard radiuseq1.0_pre14
yard_radius:yard_radiusyard radiuseq1.0_pre15
yard_radius_project:yard_radiusyard radius project yard radiuseq1.0.16

CPE	Name	Operator	Version
yard_radius:yard_radius	yard radius	eq	1.0.17
yard_radius:yard_radius	yard radius	eq	1.0.18
yard_radius:yard_radius	yard radius	eq	1.0.19
yard_radius:yard_radius	yard radius	eq	1.0.20
yard_radius:yard_radius	yard radius	eq	1.0_pre13
yard_radius:yard_radius	yard radius	eq	1.0_pre14
yard_radius:yard_radius	yard radius	eq	1.0_pre15
yard_radius_project:yard_radius	yard radius project yard radius	eq	1.0.16