FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

freeradius -- multiple vulnerabilities

Affected packages
1.0.0 <= freeradius <= 1.0.4


VuXML ID ec2f2ff5-f710-11da-9156-000e0c2e438a
Discovery 2005-09-09
Entry 2006-06-08

The freeradious development team reports:

Multiple issues exist with version 1.0.4, and all prior versions of the server. Externally exploitable vulnerabilities exist only for sites that use the rlm_sqlcounter module. Those sites may be vulnerable to SQL injection attacks, similar to the issues noted below. All sites that have not deployed the rlm_sqlcounter module are not vulnerable to external exploits.

The issues are:
SQL Injection attack in the rlm_sqlcounter module.
Buffer overflow in the rlm_sqlcounter module, that may cause a server crash.
Buffer overflow while expanding %t, that may cause a server crash.


Bugtraq ID 17171
CVE Name CVE-2005-4744