CVE-2004-2163 | Vulnerability Database | Aqua Security

login_radius on OpenBSD 3.2, 3.5, and possibly other versions does not verify the shared secret in a response packet from a RADIUS server, which allows remote attackers to bypass authentication by spoofing server replies.

Affected Software

Name	Vendor	Start Version	End Version
Openbsd	Openbsd	3.2 (including)	3.2 (including)
Openbsd	Openbsd	3.4 (including)	3.4 (including)
Openbsd	Openbsd	3.5 (including)	3.5 (including)

References

http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0058.html
http://secunia.com/advisories/12617
http://www.openbsd.org/errata35.html#radius
http://www.osvdb.org/10203
http://www.reseau.nl/advisories/0400-openbsd-radius.txt
http://www.securityfocus.com/bid/11227
https://exchange.xforce.ibmcloud.com/vulnerabilities/17456
http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0058.html
http://secunia.com/advisories/12617
http://www.openbsd.org/errata35.html#radius
http://www.osvdb.org/10203
http://www.reseau.nl/advisories/0400-openbsd-radius.txt
http://www.securityfocus.com/bid/11227
https://exchange.xforce.ibmcloud.com/vulnerabilities/17456

NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-2163
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html