Remote Authentication Dial In User Service (RADIUS), a networking
protocol that provides centralized Authentication, Authorization, and
Accounting (AAA) services to connect network resources. Attacker can use
crafted username which could lead to Denial of Service.
To Authenticate and Authorize users, RADIUS server connects to Domain
controller. Active Directory is queried for username upon incoming
access request message. This involves establishing LDAP connection and
passing LDAP query.
LDAP filter tests the username for predefined special characters and
normalize them except NUL character. If username string starts with NUL
character it causes Active Directory Domain Controller server to return
an error value. Multiple invalid requests cause RADIUS server to
disassociated from Active Directory Domain controller. Causing Denial of
further requests.
So if you aware on this and haven't patch you IPS signature yet? Please update it quickly to prevent your network.
Source : Dell SonicWALL Security Center
My Myanmar Blog
Popular Posts
-
We need to think about Server Virtualization first if we want to talk about Network Virtualization. In the era of cloud computing, servers... -
During bootup of Cisco hardware through Cisco IOS software, error messages similar to below are displayed when you erase configuration and r...
-
Today, I've got below when I try to connect my WSUS Server via WSUS Console. Below logs are display in Event Logs too. The WSUS... -
As an office 365 administrator, you would definitely need to display and export some user information such as distribution group list, all u...
-
Below error was come out when you try to migrate VM to other host for some reason. Below error was come out when you try to edit VM...
1 comments:
We sell original Herbal Products composed of Natural Herbs Clinic obtained from the world’s top botanic gardens under the cautious administration of experts who are working day and night to make the herbal products even better and to increase the range so that people suffering from certain ailments which do not have any identified care as yet can benefit from our formulas.
ReplyPost a Comment