52 matches found
Finding the Best Servers to Answer Queries -- Edge DNS and Anycast
TL;DR IP Anycast is a network addressing and routing methodology that allows IP addresses to be announced from multiple points on the internet With the proper implementation, Anycast can reduce DNS RTTs and offer innate DDoS protection Akamai's authoritative name service, Edge DNS, combines globa...
August 30, 2018—KB4343893 (OS Build 16299.637)
None None...
FreeRADIUS Server Configuration Tool
Developed for the Linux operating system and written in the python programming language. The purpose of the program is to configure the FreeRADIUS server easily and quickly. To get a grasp of what FreeRADIUS is, it would help to firstly understand what the concept RADIUS stands for: RADIUS : RADI...
GLSA-201706-27 : FreeRADIUS: Security bypass
The remote host is affected by the vulnerability described in GLSA-201706-27 FreeRADIUS: Security bypass It was discovered that the implementation of TTLS and PEAP in FreeRADIUS skips inner authentication when it handles a resumed TLS connection. The affected versions of FreeRADIUS fails to...
FreeRADIUS: Security bypass
Background FreeRADIUS is an open source RADIUS authentication server. Description It was discovered that the implementation of TTLS and PEAP in FreeRADIUS skips inner authentication when it handles a resumed TLS connection. The affected versions of FreeRADIUS fails to reliably prevent the...
Authentication flaw
The TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PE...
CVE-2017-9148
The TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PE...
CVE-2017-9148
The TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PE...
CVE-2017-9148
The vulnerability CVE-2017-9148 affects FreeRADIUS: TLS session cache allows resumption of an unauthenticated TLS session, bypassing inner authentication for PEAP/TTLS. Affected versions include FreeRADIUS 2.1.1–2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04. Imp...
CVE-2017-9148
The TLS session cache in FreeRADIUS 2.1.1 through 2.1.7, 3.0.x before 3.0.14, 3.1.x before 2017-02-04, and 4.0.x before 2017-02-04 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PE...
FreeRADIUS -- TLS resumption authentication bypass
Stefan Winter reports: The TLS session cache in FreeRADIUS before 3.0.14 fails to reliably prevent resumption of an unauthenticated session, which allows remote attackers such as malicious 802.1X supplicants to bypass authentication via PEAP or TTLS...
DNS Poisoning Attacks Made Easy: Judas DNS
DNS Poisoning Attacks Made Easy A DNS proxy server built to be deployed in place of a taken over nameserver to perform targeted exploitation. Judas works by proxying all DNS queries to the legitimate nameservers for a domain. The magic comes with Judas’s rule configurations which allow you to...
Access Point Impersonation Attacks: hostapd-wpe
hostapd-wpe – Wireless Pwnage Edition – hostapd-wpe is the replacement for FreeRADIUS-WPE . It implements IEEE 802.1x Authenticator and Authentication Server impersonation attacks to obtain client credentials, establish connectivity to the client, and launch other attacks where applicable...
Who Needs a Botnet when you have a 4 Gbps DDoS Cannon?
In recent months the DDoS world has shifted from complex small scale Botnet attacks to much larger network based DDoS attacks, perpetrated largely by hijacked web servers. How many of these hijacked servers are out there remains to be seen. However, Incapsula recently got a very good idea of just...
SuSE Update for NetworkManager, wpa_supplicant, NetworkManager-gnome SUSE-SA:2011:045
Check for the Version of NetworkManager, wpasupplicant, NetworkManager-gnome OpenVAS Vulnerability Test SuSE Update for NetworkManager, wpasupplicant, NetworkManager-gnome SUSE-SA:2011:045 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.ne...
Mandriva Update for freeradius MDKSA-2007:085 (freeradius)
Check for the Version of freeradius OpenVAS Vulnerability Test Mandriva Update for freeradius MDKSA-2007:085 freeradius Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
Mandriva Update for freeradius MDKSA-2007:085 (freeradius)
Check for the Version of freeradius OpenVAS Vulnerability Test Mandriva Update for freeradius MDKSA-2007:085 freeradius Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
openSUSE 10 Security Update : freeradius (freeradius-3286)
A memory leak in the code for handling EAP-TTLS tunnels could be exploited by attackers to crash freeradius CVE-2007-2028. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update freeradius-3286. The...
Fedora Core 6 : freeradius-1.1.3-2.fc6 (2007-499)
Wed May 9 2007 Thomas Woerner 1.1.3-2.fc6 - fixed CVE-2007-2028: EAP-TTLS denial of service Resolves: rhbz236248 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...
Moderate: freeradius security update
1.0.1-3.RHEL4.5 - fixed CVE-2007-2028: EAP-TTLS denial of service Resolves: rhbz236247...