CVE-2005-0108 in mod_auth_radiusinfo

Summary

Apache mod_auth_radius 1.5.4 and libpam-radius-auth allow remote malicious RADIUS servers to cause a denial of service (crash) via a RADIUS_REPLY_MESSAGE with a RADIUS attribute length of 1, which leads to a memcpy operation with a -1 length argument.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

01/18/2005

Disclosure

01/11/2005

Moderation

VulDB entry created

Entries

VDB-23835 (1)

CPE

ready

CWE

CWE-404 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.02327

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-0108
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-0108
CVE Details	https://www.cvedetails.com/cve/CVE-2005-0108/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!