CVE-2004-0849

Currently unrated

Key Information:

Vendor: Gnu
Status: Radius
Vendor: CVE Published:; 23 December 2004

Summary

Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when compiled with the --enable-snmp option, allows remote attackers to cause a denial of service (daemon crash) via certain SNMP requests.

References

http://lists.gnu.org/archive/html/info-gnu-radius/2004-09...

mailing-listx_refsource_MLIST

https://exchange.xforce.ibmcloud.com/vulnerabilities/17391

vdb-entryx_refsource_XF

http://www.idefense.com/application/poi/display?id=141&ty...

third-party-advisoryx_refsource_IDEFENSE

Timeline

Vulnerability published
Dec 23, 2004
Vulnerability Reserved
Sep 13, 2004