Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:48 a.m.4 views

CVE-2009-4409

The 1 CHAP and 2 MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator PPPAC function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack...

2.6CVSS7.4AI score0.0029EPSS
Exploits0References1
Prion
Prionadded 2009/12/23 9:30 p.m.7 views

Authentication flaw

The 1 CHAP and 2 MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator PPPAC function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack...

2.6CVSS7.5AI score0.0029EPSS
Exploits0References6Affected Software1
Prion
Prionadded 2009/12/09 6:30 p.m.19 views

Authentication flaw

The Internet Authentication Service IAS in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly verify the credentials in an MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication request, which allows remote...

10CVSS7.2AI score0.66697EPSS
Exploits1References4Affected Software1
NVD
NVDadded 2009/12/09 6:30 p.m.14 views

CVE-2009-2505

The Internet Authentication Service IAS in Microsoft Windows Vista SP2 and Server 2008 SP2 does not properly validate MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests, which allows remote attackers to execute arbitrary code via crafted structures in a malformed...

10CVSS7.7AI score0.47852EPSS
Exploits1References4
Prion
Prionadded 2009/12/09 6:30 p.m.19 views

Memory corruption

The Internet Authentication Service IAS in Microsoft Windows Vista SP2 and Server 2008 SP2 does not properly validate MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests, which allows remote attackers to execute arbitrary code via crafted structures in a malformed...

10CVSS8.3AI score0.47852EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2009/12/09 6:0 p.m.81 views

CVE-2009-2505

CVE-2009-2505 is a remote code execution flaw in Internet Authentication Service (IAS) on Windows Vista SP2 and Windows Server 2008 SP2, caused by improper validation during MS-CHAP v2 over PEAP. The vulnerability stems from incorrect memory handling when processing PEAP authentication requests, ...

10CVSS7.6AI score0.47852EPSS
Exploits1References4Affected Software2
Cvelist
Cvelistadded 2009/12/09 6:0 p.m.22 views

CVE-2009-2505

The Internet Authentication Service IAS in Microsoft Windows Vista SP2 and Server 2008 SP2 does not properly validate MS-CHAP v2 Protected Extensible Authentication Protocol PEAP authentication requests, which allows remote attackers to execute arbitrary code via crafted structures in a malformed...

7.7AI score0.47852EPSS
Exploits1References4
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2009/12/09 12:0 a.m.21 views

JVN#49602378 SEIL/B1 authentication issue

The PPP Access Concentrator PPPAC function within SEIL/B1 contains an issue in the CHAP and MS-CHAP-V2 authentication processes, the same challenge value is repeatedly used for each authentication attempt. Impact A third party may be able to perform replay attacks. As a result, the third party ma...

2.6CVSS6.6AI score0.0029EPSS
Exploits0
Rows per page
Query Builder