Denial of Service Vulnerability in Multiple RADIUS Implementations

Denial of Service Vulnerability in Multiple RADIUS Implementations

CVE-2001-1377 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.

Learn more about our Web Application Penetration Testing UK.