CVE-2006-1354

Loading...

General

Score:7.5/10.0
Severity:High
Category:N/A

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Relative vulnerabilities

CVE-2005-4744, CVE-2006-4744

Published on 22/03/06 - Updated on 11/10/17

Description

Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2006-1354
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2006-AVI-121
Renater 2006/VULN144, 2006/VULN297

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
freeradiusfreeradius

Share this vulnerability with:

Twitter Facebook LinkedIn Mail