CVE-2009-3111

Severity

50%

Complexity

99%

Confidentiality

48%

The rad_decode function in FreeRADIUS before 1.1.8 allows remote attackers to cause a denial of service (radiusd crash) via zero-length Tunnel-Password attributes, as demonstrated by a certain module in VulnDisco Pack Professional 7.6 through 8.11. NOTE: this is a regression error related to CVE-2003-0967.

The rad_decode function in FreeRADIUS before 1.1.8 allows remote attackers to cause a denial of service (radiusd crash) via zero-length Tunnel-Password attributes, as demonstrated by a certain module in VulnDisco Pack Professional 7.6 through 8.11. NOTE: this is a regression error related to CVE-2003-0967.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

Type

FreeRADIUS

First reported 15 years ago

2009-09-09 18:30:00

Last updated 7 years ago

2017-09-19 01:29:00

Affected Software

FreeRADIUS 0.2

0.2

FreeRADIUS 0.3

0.3

FreeRADIUS 0.4

0.4

FreeRADIUS 0.5

0.5

FreeRADIUS 0.8

0.8

FreeRADIUS 0.8.1

0.8.1

FreeRADIUS 0.9.1

0.9.1

FreeRADIUS 0.9.2

0.9.2

FreeRADIUS 0.9.3

0.9.3

FreeRADIUS 1.0.0

1.0.0

FreeRADIUS 1.0.1

1.0.1

FreeRADIUS 1.0.2

1.0.2

FreeRADIUS 1.0.3

1.0.3

FreeRADIUS 1.0.4

1.0.4

FreeRADIUS 1.0.5

1.0.5

FreeRADIUS 1.1.0

1.1.0

FreeRADIUS 1.1.3

1.1.3

FreeRADIUS 1.1.5

1.1.5

FreeRADIUS 1.1.6

1.1.6

References

http://github.com/alandekok/freeradius-server/commit/860cad9e02ba344edb0038419e415fe05a9a01f4

Patch

http://intevydis.com/vd-list.shtml

APPLE-SA-2009-11-09-1

SUSE-SR:2009:016

SUSE-SR:2009:018

36509

http://support.apple.com/kb/HT3937

[oss-security] 20090909 CVE Request -- FreeRADIUS 1.1.8

Patch

RHSA-2009:1451

36263

ADV-2009-3184

[freeradius-users] 20090909 Version 1.1.8 has been released

oval:org.mitre.oval:def:9919

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.