[5821] in bugtraq
Re: SNI-22: RADIUS Advisory
daemon@ATHENA.MIT.EDU (miguel a.l. paraz)
Wed Dec 17 20:04:52 1997
Date: Thu, 18 Dec 1997 07:37:06 +0800
Reply-To: "miguel a.l. paraz" <map@IPHIL.NET>
From: "miguel a.l. paraz" <map@IPHIL.NET>
To: BUGTRAQ@NETSPACE.ORG
In-Reply-To: <Pine.BSI.3.96.971217113536.6251A-100000@silence.secnet.com>
> Vulnerable Systems:
> ~~~~~~~~~~~~~~~~~~~
>
> All RADIUS servers based off of Livingston's 1.16 RADIUS server.
> Livingston RADIUS servers 2.0, 2.0.1 are not vulnerable.
Cistron radiusd is not vulnerable; it checks the length of the returned
hostname.
--
miguel a.l. paraz iphil communications, makati city, ph +63-2-750-2288
