iDefense Security Advisory 11.26.06 - Remote exploitation of a format string vulnerability in GNU Radius could allow an attacker to execute code in the context of the running daemon. iDefense has confirmed that this vulnerability is present in version 1.3 and 1.2 of GNU Radius. It is likely that all prior versions are vulnerable.
efe55ee03ea96465eb10d6fe6fe06b65e592f753b28fc7f5ddfd146196ddfff3