Dmitry Kozlov

1 exploit Active since Feb 2021
CVE-2020-28194 WRITEUP CRITICAL WRITEUP
accel-ppp < 1.12.0-e9d369a - Integer Underflow in RADIUS Vendor-Specific Attribute Handling
Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution.
CVSS 9.8