Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2010-3696

Опубликовано: 30 мая 2010
Источник: redhat
CVSS2: 4

Описание

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.

Отчет

Not vulnerable. This issue did not affect the versions of freeradius as shipped with Red Hat Enterprise Linux 4, 5, or 6.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 3freeradiusNot affected
Red Hat Enterprise Linux 4freeradiusNot affected
Red Hat Enterprise Linux 5freeradiusNot affected
Red Hat Enterprise Linux 6freeradiusNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
https://bugzilla.redhat.com/show_bug.cgi?id=639390freeradius: DoS via certain DHCP requests

4 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2010-3696

ubuntu
больше 15 лет назад

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.

nvd логотип

CVE-2010-3696

nvd
больше 15 лет назад

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.

debian логотип

CVE-2010-3696

debian
больше 15 лет назад

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in cert ...

github логотип

GHSA-63v7-hqpp-9687

github
больше 3 лет назад

The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.

4 Medium

CVSS2