CVE-2001-1081

3 documents3 sources

Severity

7.5HIGH

EPSS

1.0%

top 23.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Lucent Radius Simon Horms Radius

Timeline

PublishedJul 6

Latest updateApr 30

Description

Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDlucent/radius2.1.2

▶NVDsimon_horms/radius2.1_2

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-cg3w-hfrc-qpm8: Format string vulnerabilities in Livingston/Lucent RADIUS before 2↗2022-04-30

▶

CVEList

CVE-2001-1081: Format string vulnerabilities in Livingston/Lucent RADIUS before 2↗2004-09-01

▶