Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0450

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0450
Last Modified 10 Sep 2008 03:19:02
Published 07 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0450

Summary

Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow.

Vulnerable Systems

Application

  • Cistron Radius Daemon 1.6.6


References

TURBO - TLSA-2003-40

DEBIAN - DSA-321

MISC - http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=196063

SUSE - SuSE-SA:2003:030

CONECTIVA - CLA-2003:664


Last Updated: 27 May 2016 10:37:55