Opened 5 years ago

Closed 5 years ago

Last modified 4 years ago

#12169 closed defect (fixed)

RCE Vulnerability - FreeRADIUS 2.1.10 - 2.1.12

Reported by: anonymous Owned by: jow
Priority: highest Milestone: Barrier Breaker 14.07
Component: packages Version: Trunk
Keywords: stack overflow Cc:


  • Advisory: PRE-SA-2012-06
  • Released on: 10 September 2012
  • Affected product: FreeRADIUS 2.1.10 - 2.1.12
  • Impact: remote code execution
  • Origin: specially crafted client certificates
  • CVSS Base Score: 10

Impact Subscore: 10
Exploitability Subscore: 10

CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C)

  • Credit: Timo Warns (PRESENSE Technologies GmbH)
  • CVE Identifier: CVE-2012-3547

Attachments (0)

Change History (3)

comment:1 Changed 5 years ago by jow

  • Owner changed from developers to jow
  • Status changed from new to accepted

comment:2 Changed 5 years ago by jow

  • Resolution set to fixed
  • Status changed from accepted to closed

Updated with r33365 - thanks.

comment:3 Changed 4 years ago by jow

  • Milestone changed from Attitude Adjustment 12.09 to Barrier Breaker 14.07

Milestone Attitude Adjustment 12.09 deleted

Add Comment

Modify Ticket

as closed .
The resolution will be deleted. Next status will be 'reopened'.

E-mail address and user name can be saved in the Preferences.

Note: See TracTickets for help on using tickets.