Lucene search

K

Veracode Vulnerability DatabaseVERACODE:23100

HistoryApr 10, 2020 - 12:15 a.m.

Denial Of Service (DoS)

2020-04-1000:15:55

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9

EPSS

0.016

Percentile

87.5%

FreeRADIUS is vulnerable to denial of service (DoS). A memory leak flaw was found in the way FreeRADIUS parses certain authentication requests. A remote attacker could send a specially crafted authentication request which could cause FreeRADIUS to leak a small amount of memory. If enough of these requests are sent, the FreeRADIUS daemon would consume a vast quantity of system memory leading to a possible denial of service.

References

rhn.redhat.com/errata/RHSA-2007-0338.html

secunia.com/advisories/24849

secunia.com/advisories/24907

secunia.com/advisories/24917

secunia.com/advisories/24996

secunia.com/advisories/25201

secunia.com/advisories/25220

security.gentoo.org/glsa/glsa-200704-14.xml

www.freeradius.org/security.html

www.mandriva.com/security/advisories?name=MDKSA-2007:085

www.novell.com/linux/security/advisories/2007_10_sr.html

www.redhat.com/security/updates/classification/#moderate

www.securityfocus.com/bid/23466

www.securitytracker.com/id?1018042

www.trustix.org/errata/2007/0013/

www.vupen.com/english/advisories/2007/1369

access.redhat.com/errata/RHSA-2007:0338

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11156

EPSS

0.016

Percentile

87.5%

Related for VERACODE:23100

openvas11 nessus11 cve1 redhat1 cvelist1 ubuntucve1 securityvulns1 oraclelinux1 fedora1 debiancve1 nvd1 prion1 centos1 gentoo1 freebsd1