Home » Others » Microsoft NPS RADIUS DoS

Microsoft NPS RADIUS DoS

in - on 5:33 PM - 1 comment
Remote Authentication Dial In User Service (RADIUS), a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) services to connect network resources. Attacker can use crafted username which could lead to Denial of Service.

To Authenticate and Authorize users, RADIUS server connects to Domain controller. Active Directory is queried for username upon incoming access request message. This involves establishing LDAP connection and passing LDAP query. LDAP filter tests the username for predefined special characters and normalize them except NUL character. If username string starts with NUL character it causes Active Directory Domain Controller server to return an error value. Multiple invalid requests cause RADIUS server to disassociated from Active Directory Domain controller. Causing Denial of further requests.

So if you aware on this and haven't patch you IPS signature yet? Please update it quickly to prevent your network.

Source : Dell SonicWALL Security Center
Labels:

1 comments:

Natural herbs clinic mod
April 1, 2021 at 2:51 AM

We sell original Herbal Products composed of Natural Herbs Clinic obtained from the world’s top botanic gardens under the cautious administration of experts who are working day and night to make the herbal products even better and to increase the range so that people suffering from certain ailments which do not have any identified care as yet can benefit from our formulas.

Reply

Post a Comment