Executive Summary

Informations
Name CVE-2005-4744 First vendor Publication 2005-12-31
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:P)
Cvss Base Score 6.4 Attack Range Network
Cvss Impact Score 4.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-4744

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:10449
 
Oval ID: oval:org.mitre.oval:def:10449
Title: Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.
Description: Off-by-one error in the sql_error function in sql_unixodbc.c in FreeRADIUS 1.0.2.5-5, and possibly other versions including 1.0.4, might allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by causing the external database query to fail. NOTE: this single issue is part of a larger-scale disclosure, originally by SUSE, which reported multiple issues that were disputed by FreeRADIUS. Disputed issues included file descriptor leaks, memory disclosure, LDAP injection, and other issues. Without additional information, the most recent FreeRADIUS report is being regarded as the authoritative source for this CVE identifier.
Family: unix Class: vulnerability
Reference(s): CVE-2005-4744
 Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
 Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 2

OpenVAS Exploits

Date Description
2008-09-04 Name : FreeBSD Ports: freeradius
File : nvt/freebsd_freeradius2.nasl
2008-01-17 Name : Debian Security Advisory DSA 1089-1 (freeradius)
File : nvt/deb_1089_1.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
19322 FreeRADIUS sql_unixodbc.c Off-by-one DoS
19321 FreeRADIUS rlm_ldap.c Crafted Query LDAP Data Disclosure
19320 FreeRADIUS xlat.c strftime() Function Memory Leak DoS
19319 FreeRADIUS xlat.c Server Reply Overflow
19318 FreeRADIUS token.c Off-by-one DoS
19317 FreeRADIUS exec.c radius_exec_program() Function Overflow DoS

Nessus® Vulnerability Scanner

Date Description
2006-10-14 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1089.nasl - Type : ACT_GATHER_INFO
2006-07-03 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2006-0271.nasl - Type : ACT_GATHER_INFO
2006-06-11 Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_ec2f2ff5f71011da9156000e0c2e438a.nasl - Type : ACT_GATHER_INFO
2006-04-08 Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2006-066.nasl - Type : ACT_GATHER_INFO
2006-04-04 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2006-0271.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc
http://rhn.redhat.com/errata/RHSA-2006-0271.html
http://secunia.com/advisories/16712
http://secunia.com/advisories/19497
http://secunia.com/advisories/19518
http://secunia.com/advisories/19811
http://secunia.com/advisories/20461
http://www.debian.org/security/2006/dsa-1089
http://www.freeradius.org/security/20050909-response-to-suse.txt
http://www.freeradius.org/security/20050909-vendor-sec.txt
http://www.securityfocus.com/bid/14775
http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:066
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=167676
https://exchange.xforce.ibmcloud.com/vulnerabilities/22211
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
Date Informations
2024-11-28 23:21:16
  • Multiple Updates
2024-11-28 12:08:04
  • Multiple Updates
2023-11-07 21:48:05
  • Multiple Updates
2023-02-13 09:29:28
  • Multiple Updates
2021-05-04 12:03:31
  • Multiple Updates
2021-04-22 01:03:49
  • Multiple Updates
2020-05-23 00:17:13
  • Multiple Updates
2017-10-11 09:23:36
  • Multiple Updates
2017-07-20 09:23:16
  • Multiple Updates
2016-04-26 14:09:01
  • Multiple Updates
2014-02-17 10:34:05
  • Multiple Updates
2013-05-11 11:38:58
  • Multiple Updates