1. CVE-Search
  2. CVE-2003-0450
ID CVE-2003-0450
Summary Cistron RADIUS daemon (radiusd-cistron) 1.6.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large value in an NAS-Port attribute, which is interpreted as a negative number and causes a buffer overflow.
References
Vulnerable Configurations
  • cpe:2.3:a:cistron:radius_daemon:*:*:*:*:*:*:*:*
    cpe:2.3:a:cistron:radius_daemon:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 10-09-2008 - 19:19)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
conectiva CLA-2003:664
debian DSA-321
misc http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=196063
suse SuSE-SA:2003:030
turbo TLSA-2003-40
Last major update 10-09-2008 - 19:19
Published 07-08-2003 - 04:00
Last modified 10-09-2008 - 19:19
Back to Top