FreeRADIUS Security Bypass Vulnerability

FreeRadius is a set of software from the FreeRADIUS Server project that implements the RADIUS protocol. The software is mainly used for account authentication management, bookkeeping management and Internet account management, etc. and contains a Radius server, a client library for BSD protocol...

Apple macOS Sierra EAP-TLS Certificate Validation Vulnerability

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A certificate validation vulnerability exists in Apple macOS EAP-TLS, which can be exploited by remote attackers to bypass security restrictions and obtain sensitive information...

admin-cli: Potential EAP resource starvation DOS attack via GET requests for server log files

An EAP feature to download server log files allows logs to be available via GET requests making them vulnerable to cross-origin attacks. An attacker could trigger the user's browser to request the log files consuming enough resources that normal server functioning could be impaired...

EAP7 Privilege escalation when managing domain including earlier version slaves

The domain controller will not propagate its administrative RBAC configuration to some slaves. An attacker could use this to escalate their privileges...

DEBIAN-CVE-2015-8023

The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3.4 does not properly validate local state, which allows remote attackers to bypass authentication via an empty Success message in response to an initial Challenge message...

UBUNTU-CVE-2015-5314

The eappwdprocess function in eapserver/eapserverpwd.c in hostapd 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when used with 1 an internal EAP server or 2 a RADIUS server and EAP-pwd is enabled in a runtime configuration, which allows remote...

DEBIAN-CVE-2015-4143

The EAP-pwd server and peer implementation in hostapd and wpasupplicant 1.0 through 2.4 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 Commit or 2 Confirm message payload...

UBUNTU-CVE-2015-4171

strongSwan 4.3.0 through 5.x before 5.3.2 and strongSwan VPN Client before 1.4.6, when using EAP or pre-shared keys for authenticating an IKEv2 connection, does not enforce server authentication restrictions until the entire authentication process is complete, which allows remote servers to obtai...

FreeRADIUS EAP-PWD Module Read Overflow Denial of Service Vulnerability

FreeRadius is an open source based on the Radius protocol , the implementation of Radius AAA Authentication, Authorization, Accounting function of the software . FreeRadius processing EAP-PWD messages there are read overflow vulnerabilities , allowing remote attackers to exploit the vulnerability...

wpa_supplicant/hostapd eap_server/eap_server_pwd.c eap_pwd_process_commit_resp() out-of-bounds read vulnerability

hostapd is a user-state daemon for APs and authentication servers. wpasupplicant is a WiFi-capable component for Android that supports authentication of wireless connections. hostapd eapserver/eapserverpwd.c An out-of-bounds read vulnerability exists in the eappwdprocesscommitresp function when...

Cisco IOS Extensible Authentication Protocol Vulnerability (cisco-sr-20071019-eap)

The version of Cisco IOS running on the remote host has a denial of service vulnerability. The Extensible Authentication Protocol EAP implementation does not properly process EAP packets, which could cause the device to crash. A remote, unauthenticated attacker could exploit this to execute...

DEBIAN-CVE-2012-4445

Heap-based buffer overflow in the eapservertlsprocessfragment function in eapservertlscommon.c in the EAP authentication server in hostapd 0.6 through 1.0 allows remote attackers to cause a denial of service crash or abort via a small "TLS Message Length" value in an EAP-TLS message with the "Mor...

Memory corruption

The Internet Authentication Service IAS in Microsoft Windows Vista SP2 and Server 2008 SP2 does not properly validate MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests, which allows remote attackers to execute arbitrary code via crafted structures in a malformed...

PT-2009-4912 · Microsoft · Windows Server 2008 R2 +2

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 Description: A remote code execution issue exists due to improper validation of MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests. This allows...

CVE-2008-1114

Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol PEAP, do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle MITM attacks...

CVE-2004-1459

Cisco Secure Access Control Server ACS 3.2, when configured as a Light Extensible Authentication Protocol LEAP RADIUS proxy, allows remote attackers to cause a denial of service device crash via certain LEAP authentication requests...