Description
Multiple buffer overflows in FreeRADIUS 1.0.3 and 1.0.4 allow remote attackers to cause denial of service (crash) via (1) the rlm_sqlcounter module or (2) unknown vectors "while expanding %t".
Affected products
- freeradius / freeradius1.0.3 – 1.0.3
- freeradius / freeradius1.0.4 – 1.0.4
References
- MISChttp://www.securityfocus.com/bid/17293
- VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:092
- MISChttp://www.osvdb.org/19325
- MISChttp://www.osvdb.org/19324
- VENDOR_ADVISORYhttp://www.debian.org/security/2006/dsa-1145
- MISChttp://www.freeradius.org/security.html
- VENDOR_ADVISORYhttp://www.mandriva.com/security/advisories?name=MDKSA-2006:066