Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2013-0294

packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to obtain sensitive information via a brute force attack.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://lists.fedorapro...
CONFIRM: http://lists.fedorapro...
CONFIRM: http://lists.fedorapro...
CONFIRM: https://bugzilla.redha...
CONFIRM: https://github.com/wic...
MISC: http://www.openwall.co...
MISC: http://www.securityfoc...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2013-0294

Related bugs

References