VDB

GCVE-110-CERTCC-2001-936683

GCVE-110-CERTCC-2001-936683
Advisory Published
Vulnetix · Advisory published November 29, 2001
Various RADIUS servers and clients permit the passing of vendor-specific and user-specific attributes. Several implementations of RADIUS fail to check the Vendor-Length of the Vendor-Specific attribute. It's possible to cause a denial of service against RADIUS servers with a malformed Vendor-Specific attribute.

Risk Scores

certcc-cam
certcc-cam
impact3population10exploitation0widely_known5score_current1.771875ease_of_exploitation14

Browse GCVE Records

72,409 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›