Unrated severityNVD Advisory· Published Oct 7, 2010· Updated Jun 16, 2026
CVE-2010-3696
CVE-2010-3696
Description
The fr_dhcp_decode function in lib/dhcp.c in FreeRADIUS 2.1.9, in certain non-default builds, does not properly handle the DHCP Relay Agent Information option, which allows remote attackers to cause a denial of service (infinite loop and daemon outage) via a packet that has more than one sub-option. NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:freeradius:freeradius:2.1.9:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:freeradius:freeradius:2.1.9:*:*:*:*:*:*:*
- (no CPE)range: =2.1.9
Patches
Vulnerability mechanics
References
7- github.com/alandekok/freeradius-server/commit/4dc7800b866f889a1247685bbaa6dd4238a56279nvdPatch
- bugs.freeradius.org/bugzilla/show_bug.cginvdPatch
- secunia.com/advisories/41621nvdVendor Advisory
- freeradius.org/press/index.htmlnvd
- www.openwall.com/lists/oss-security/2010/10/01/3nvd
- www.openwall.com/lists/oss-security/2010/10/01/8nvd
- bugzilla.redhat.com/show_bug.cginvd
News mentions
0No linked articles in our index yet.