10 matches found
SLES9: Security update for freeradius
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: freeradius For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5013351 within the...
Gentoo Security Advisory GLSA 200604-03 (freeradius)
The remote host is missing updates announced in advisory GLSA 200604-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
FreeBSD Ports: freeradius
The remote host is missing an update to the system as announced in the referenced advisory. VID 1a216dfd-f710-11da-9156-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: freeradius
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : freeradius -- EAP-MSCHAPv2 Authentication Bypass (37a5c10f-bf56-11da-b0e9-00123ffe8333)
Freeradius Security Contact reports : Insufficient input validation was being done in the EAP-MSCHAPv2 state machine. A malicious attacker could manipulate their EAP-MSCHAPv2 client state machine to potentially convince the server to bypass authentication checks. This bypassing could also result ...
freeradius security update
CentOS Errata and Security Advisory CESA-2006:0271 Updated freeradius packages that fix an authentication weakness are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. FreeRADIUS is a high-performance and highly configurable free...
Important: Red Hat Security Advisory: freeradius security update
Updated freeradius packages that fix an authentication weakness are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. FreeRADIUS is a high-performance and highly configurable free RADIUS server designed to allow centralized...
RHEL 3 / 4 : freeradius (RHSA-2006:0271)
Updated freeradius packages that fix an authentication weakness are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. FreeRADIUS is a high-performance and highly configurable free RADIUS server designed to allow centralized...
SUSE-SA:2006:019: freeradius
The remote host is missing the patch for the advisory SUSE-SA:2006:019 freeradius. Insufficient input validation was being done in the EAP-MSCHAPv2 state machine of the FreeRADIUS authentication server. A malicious attacker could manipulate their EAP-MSCHAPv2 client state machine to potentially...
CVE-2006-1354
CVE-2006-1354 affects FreeRADIUS 1.0.0–1.1.0. The root cause is insufficient input validation in the EAP-MSCHAPv2 state machine, allowing a remote attacker over the network to bypass authentication or cause a denial of service (server crash). Connected OpenVAS entries and advisories corroborate t...