fkie_cve-2010-3697
Vulnerability from fkie_nvd
Published
2010-10-07 21:00
Modified
2024-11-21 01:19
Severity ?
Summary
The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving long-term database outages, does not properly handle long queue times for requests, which allows remote attackers to cause a denial of service (daemon crash) by sending many requests.
References
secalert@redhat.comhttp://freeradius.org/press/index.html#2.1.10
secalert@redhat.comhttp://github.com/alandekok/freeradius-server/commit/ff94dd35673bba1476594299d31ce8293b8bd223Patch
secalert@redhat.comhttp://secunia.com/advisories/41621Vendor Advisory
secalert@redhat.comhttp://www.openwall.com/lists/oss-security/2010/10/01/3
secalert@redhat.comhttp://www.openwall.com/lists/oss-security/2010/10/01/8
secalert@redhat.comhttps://bugs.freeradius.org/bugzilla/show_bug.cgi?id=35
secalert@redhat.comhttps://bugzilla.redhat.com/show_bug.cgi?id=639397
af854a3a-2127-422b-91ae-364da2661108http://freeradius.org/press/index.html#2.1.10
af854a3a-2127-422b-91ae-364da2661108http://github.com/alandekok/freeradius-server/commit/ff94dd35673bba1476594299d31ce8293b8bd223Patch
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/41621Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2010/10/01/3
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2010/10/01/8
af854a3a-2127-422b-91ae-364da2661108https://bugs.freeradius.org/bugzilla/show_bug.cgi?id=35
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=639397
Impacted products
Vendor Product Version
freeradius freeradius 2.1.0
freeradius freeradius 2.1.1
freeradius freeradius 2.1.2
freeradius freeradius 2.1.3
freeradius freeradius 2.1.4
freeradius freeradius 2.1.6
freeradius freeradius 2.1.7
freeradius freeradius 2.1.8
freeradius freeradius 2.1.9


To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B92B1F7-8139-4D5A-9461-0C7314BCCBC5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5CAEB64-0676-4C18-8255-DACDA612188E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "17F7A434-49DC-4005-9161-F2B49559621F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A54D59A-B832-4EE3-A8D6-A85EC17C268A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D494932F-F639-44BE-B15C-7F07A67B0502",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "D2D45784-C53B-4A11-B1B3-BC68B514002D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "E969979B-2852-453D-AF48-A462448D4C62",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E56E3E2-9142-47F5-B53E-61ACE4FA9A90",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:freeradius:freeradius:2.1.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE0CFEA6-1AC0-41AA-BEF0-16FE1A933758",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The wait_for_child_to_die function in main/event.c in FreeRADIUS 2.1.x before 2.1.10, in certain circumstances involving long-term database outages, does not properly handle long queue times for requests, which allows remote attackers to cause a denial of service (daemon crash) by sending many requests."
    },
    {
      "lang": "es",
      "value": "La funci\u00f3n wait_for_child_to_die en main/event.c en FreeRADIUS v2.1.x anterior a v2.1.10, en determinadas ocaciones genera cortes en la base de datos al no controlar correctamente los tiempos largos de la cola de peticiones, permitiendo de esta forma a atacantes remotos provocar una denegaci\u00f3n de servicio ( ca\u00edda del servicio) mediante el env\u00edo de muchas peticiones."
    }
  ],
  "id": "CVE-2010-3697",
  "lastModified": "2024-11-21T01:19:25.093",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-10-07T21:00:03.500",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://freeradius.org/press/index.html#2.1.10"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Patch"
      ],
      "url": "http://github.com/alandekok/freeradius-server/commit/ff94dd35673bba1476594299d31ce8293b8bd223"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41621"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openwall.com/lists/oss-security/2010/10/01/3"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.openwall.com/lists/oss-security/2010/10/01/8"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugs.freeradius.org/bugzilla/show_bug.cgi?id=35"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=639397"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://freeradius.org/press/index.html#2.1.10"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://github.com/alandekok/freeradius-server/commit/ff94dd35673bba1476594299d31ce8293b8bd223"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/41621"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2010/10/01/3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.openwall.com/lists/oss-security/2010/10/01/8"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugs.freeradius.org/bugzilla/show_bug.cgi?id=35"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=639397"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.