2017-10-16 12:31:07 -04:00
{
2019-03-17 23:53:09 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2006-1354" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
2017-10-16 12:31:07 -04:00
]
2019-03-17 23:53:09 +00:00
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
"value" : "Unspecified vulnerability in FreeRADIUS 1.0.0 up to 1.1.0 allows remote attackers to bypass authentication or cause a denial of service (server crash) via \"Insufficient input validation\" in the EAP-MSCHAPv2 state machine module."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "GLSA-200604-03" ,
"refsource" : "GENTOO" ,
"url" : "http://www.gentoo.org/security/en/glsa/glsa-200604-03.xml"
} ,
{
"name" : "20060404-01-U" ,
"refsource" : "SGI" ,
"url" : "ftp://patches.sgi.com/support/free/security/advisories/20060404-01-U.asc"
} ,
{
"name" : "freeradius-eap-mschapv2-auth-bypass(25352)" ,
"refsource" : "XF" ,
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/25352"
} ,
{
"name" : "19300" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/19300"
} ,
{
"name" : "SUSE-SA:2006:019" ,
"refsource" : "SUSE" ,
"url" : "http://lists.suse.de/archive/suse-security-announce/2006-Mar/0009.html"
} ,
{
"name" : "17171" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/17171"
} ,
{
"name" : "20461" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/20461"
} ,
{
"name" : "19405" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/19405"
} ,
{
"name" : "19811" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/19811"
} ,
{
"name" : "ADV-2006-1016" ,
"refsource" : "VUPEN" ,
"url" : "http://www.vupen.com/english/advisories/2006/1016"
} ,
{
"name" : "oval:org.mitre.oval:def:10156" ,
"refsource" : "OVAL" ,
"url" : "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10156"
} ,
{
"name" : "http://www.freeradius.org/security.html" ,
"refsource" : "CONFIRM" ,
"url" : "http://www.freeradius.org/security.html"
} ,
{
"name" : "DSA-1089" ,
"refsource" : "DEBIAN" ,
"url" : "http://www.debian.org/security/2006/dsa-1089"
} ,
{
"name" : "1015795" ,
"refsource" : "SECTRACK" ,
"url" : "http://securitytracker.com/id?1015795"
} ,
{
"name" : "RHSA-2006:0271" ,
"refsource" : "REDHAT" ,
"url" : "http://rhn.redhat.com/errata/RHSA-2006-0271.html"
} ,
{
"name" : "19527" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/19527"
} ,
{
"name" : "2006-0020" ,
"refsource" : "TRUSTIX" ,
"url" : "http://www.trustix.org/errata/2006/0020"
} ,
{
"name" : "MDKSA-2006:060" ,
"refsource" : "MANDRIVA" ,
"url" : "http://www.mandriva.com/security/advisories?name=MDKSA-2006:060"
} ,
{
"name" : "19518" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/19518"
}
]
}
}
