CVE-2004-0131
Title: GNU Radius daemon null dereference DoS
DoS
Proof Of Concept
No public PoC currently indexed for CVE-2004-0131.
CWE Category
NVD-CWE-noinfo
Published Date
Mar 03, 2004
Modified Date
Apr 03, 2025
Exploit Status
Not Found
Score
5.0
CVSS v2.0
Exploit Probability (EPSS)
3.54%
Vulnerability Summary
CVE-2004-0131: The rad_print_request function in logger.c for GNU Radius daemon (radiusd) before 1.2 allows remote attackers to cause a denial of service (crash) via a UDP packet with an Acct-Status-Type attribute without a value and no Acct-Session-Id attribute, which causes a null dereference.
Impacted Vendors
Reference Links
http://ftp.gnu.org/gnu/radius/radius-1.2.tar.gz
http://secunia.com/advisories/10799
http://www.idefense.com/application/poi/display?id=71&type=vulnerabilities&flashstatus=true
http://www.kb.cert.org/vuls/id/277396
http://www.osvdb.org/3824
http://www.securityfocus.com/bid/9578
https://exchange.xforce.ibmcloud.com/vulnerabilities/15046
http://ftp.gnu.org/gnu/radius/radius-1.2.tar.gz
http://secunia.com/advisories/10799
http://www.idefense.com/application/poi/display?id=71&type=vulnerabilities&flashstatus=true
http://www.kb.cert.org/vuls/id/277396
http://www.osvdb.org/3824
http://www.securityfocus.com/bid/9578
https://exchange.xforce.ibmcloud.com/vulnerabilities/15046
CVSS v2.0
Source Entity
[email protected]
Severity
MEDIUM
5.0
Access Vector
N/A
Authentication
N/A
RAW VECTOR
AV:N/AC:L/Au:N/C:N/I:N/A:P
Associated Attack Patterns (CAPEC)
Total: PatternsNo specific attack patterns mapped.
Likelihood
Severity
Page /
CVE-2004-0131 Exploits & PoCs (Proof Of Concept)
No public PoCs found in our database for this CVE.
MODIFIED
Vulnerability data or affected products updated.
PUBLISHED
Vulnerability first announced in NVD.
Attack Vector Matrix
Access Vector
N/A
Complexity
N/A
Privileges
N/A
Interaction
NONE
CVSS Vector String
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Stack
No specific products linked.