Back to search
CVE-2009-4409
Published: Dec 23, 2009
Modified: Sep 17, 2024
PUBLISHED
Description
The (1) CHAP and (2) MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator (PPPAC) function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
37628
third-party-advisory
x_refsource_SECUNIA
37293
vdb-entry
x_refsource_BID
JVN#49602378
third-party-advisory
x_refsource_JVN
61118
vdb-entry
x_refsource_OSVDB
http://www.seil.jp/seilseries/security/2009/a00697.php
x_refsource_CONFIRM
JVNDB-2009-000079
third-party-advisory
x_refsource_JVNDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now