CVE-2004-0961
EPSS 2.6%
Description
Memory leak in FreeRADIUS before 1.0.1 allows remote attackers to cause a denial of service (memory exhaustion) via a series of Access-Request packets with (1) Ascend-Send-Secret, (2) Ascend-Recv-Secret, or (3) Tunnel-Password attributes.
How to fix CVE-2004-0961
To remediate CVE-2004-0961, upgrade the affected package to a fixed version below.
- Debian/freeradius—upgrade to 1.0.1 or later
Is CVE-2004-0961 being exploited?
Low — EPSS is 2.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0.1