The CreateID function in packet.py in pyrad prior to 2.1 uses sequential packet IDs, which makes it easier for remote malicious users to spoof packets by predicting the next ID, a different vulnerability than CVE-2013-0294.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pyrad project pyrad |