Computer Security
[EN] securityvulns.ru no-pyccku


FreeRADIUS memory leak
Published:16.04.2007
Source:
SecurityVulns ID:7584
Type:remote
Threat Level:
4/10
Description:Memory leak on large number of EAP-TLS requests leads to Denial of Service conditions.
Affected:FREERADIUS : freeRADIUS 1.1
CVE:CVE-2007-2028 (Memory leak in freeRADIUS 1.1.5 and earlier allows remote attackers to cause a denial of service (memory consumption) via a large number of EAP-TTLS tunnel connections using malformed Diameter format attributes, which causes the authentication request to be rejected but does not reclaim VALUE_PAIR data structures.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod