This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote FreeBSD host is missing a security-related update.
An iDEFENSE security advisory reports :
Remote exploitation of an input validation error in version 1.2 of GNU
radiusd could allow a denial of service.
The vulnerability specifically exists within the asn_decode_string()
function defined in snmplib/asn1.c. When a very large unsigned number
is supplied, it is possible that an integer overflow will occur in the
bounds-checking code. The daemon will then attempt to reference
unallocated memory, resulting in an access violation that causes the
process to terminate.
See also :
Update the affected package.
Risk factor :
Medium / CVSS Base Score : 5.0