CVE-2004-2163

Severity

75%

Complexity

99%

Confidentiality

106%

login_radius on OpenBSD 3.2, 3.5, and possibly other versions does not verify the shared secret in a response packet from a RADIUS server, which allows remote attackers to bypass authentication by spoofing server replies.

login_radius on OpenBSD 3.2, 3.5, and possibly other versions does not verify the shared secret in a response packet from a RADIUS server, which allows remote attackers to bypass authentication by spoofing server replies.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

OpenBSD

First reported 20 years ago

2004-12-31 05:00:00

Last updated 7 years ago

2017-07-11 01:31:00

Affected Software

OpenBSD 3.2

3.2

OpenBSD 3.4

3.4

OpenBSD 3.5

3.5

References

20040921 OpenBSD radius authentication vulnerability

Vendor Advisory

12617

Patch, Vendor Advisory

http://www.openbsd.org/errata35.html#radius

Patch

10203

http://www.reseau.nl/advisories/0400-openbsd-radius.txt

Patch, Vendor Advisory

11227

Patch

openbsd-radius-auth-bypass(17456)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.