CVE-2013-0342: Input Validation
First published: Fri Feb 15 2013(Updated: )
Nathaniel McCallum reported that pyrad was creating serialized RADIUS packet IDs in the CreateID() function in packet.py. This is not suitable for RADIUS as the RFC specifies that the ID must not be predictable. As a result, the ID of the next packet sent can be spoofed. This has been corrected in upstream's forthcoming version 2.1 via: <a href="https://github.com/wichert/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5">https://github.com/wichert/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5</a>
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| pip/pyrad | <2.1 | 2.1 |
| Pyrad | <2.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2013/02/15/9
- http://www.openwall.com/lists/oss-security/2013/02/21/27
- http://www.openwall.com/lists/oss-security/2013/02/22/2
- http://www.securityfocus.com/bid/57984
- https://bugzilla.redhat.com/show_bug.cgi?id=911685
- https://exchange.xforce.ibmcloud.com/vulnerabilities/82134
- https://github.com/pyradius/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5
- https://github.com/wichert/pyrad/commit/38f74b36814ca5b1a27d9898141126af4953bee5
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=894488
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=911687
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=911682
- https://github.com/wichert/pyrad/blob/38f74b36814ca5b1a27d9898141126af4953bee5/pyrad/packet.py#L518
- https://access.redhat.com/security/cve/CVE-2013-0342
- https://nvd.nist.gov/vuln/detail/CVE-2013-0342
- https://web.archive.org/web/20200302193833/http://www.securityfocus.com/bid/57984
- https://github.com/advisories/GHSA-w4px-9pgm-p2f3 (Advisory)
- https://github.com/pypa/advisory-database/tree/main/vulns/pyrad/PYSEC-2019-154.yaml
- agent/type
- agent/remedy
- agent/weakness
- agent/softwarecombine
- agent/author
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2013-0342
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/github-advisory-latest
- source/GitHub
- alias/GHSA-w4px-9pgm-p2f3
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/references
- collector/github-advisory
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-cve
- source/NVD
- package-manager/pip
- vendor/pyrad project
- canonical/pyrad