The RADIUS service in Server App in Apple OS X Server prior to 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow man-in-the-middle malicious users to hijack RADIUS sessions by leveraging knowledge of the private key that matches this fallback certificate.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple os x server 2.2 |
||
apple os x server |
||
apple os x server 2.0 |
||
apple os x server 2.1 |
||
apple os x server 2.1.1 |
||
apple os x server 2.2.1 |