"Critical Vulnerability in the RADIUS Protocol Leaves Networking Equipment Open to Attack"

The critical "BlastRADIUS" vulnerability in the RADIUS protocol exposes most networking equipment to Man-in-the-Middle (MitM) attacks. The vulnerability is hard to exploit, but an exploit could have serious consequences. BlastRADIUS lets attackers exploit certain RADIUS packets. The RADIUS protocol enables certain Access-Request messages to have no integrity or authentication checks. Therefore, an attacker can modify these packets without being detected. They could force any user to authenticate and give authorization to that user. This article continues to discuss the potential exploitation and impact of the BlastRADIUS vulnerability.

Help Net Security reports "Critical Vulnerability in the RADIUS Protocol Leaves Networking Equipment Open to Attack"

Submitted by grigby1
 

Submitted by Gregory Rigby on