CVE-2006-1354

EPSS 4.8%

發布日:2006/3/22修改日:2026/4/28

描述

Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via "Insufficient input validation" in the EAP-MSCHAPv2 state machine module.

受影響套件(1)

Debian/freeradiusfrom 0, < 1.1.0-1.2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-1354