OSVDB ID: 63371

Title: Apple Mac OS X FreeRADIUS Unspecified Certificate Authentication Bypass

Info

Disclosure

Mar 30, 2010

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Mar 30, 2010

Description

Classification

Location: Remote / Network Access
Attack Type: Infrastructure
Impact: Loss of Integrity
Solution: Patch / RCS
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Apple has released a patch (2010-002) to address this vulnerability.

Products

Unknown or Incomplete

References

CVE ID: 2010-0524 (see also: NVD)
Secunia Advisory ID: 39158
Mail List Post: http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
Vendor Specific Advisory URL: http://support.apple.com/kb/HT4077
News Article: http://www.computerworld.com/s/article/9174337/Apple_delivers_record_monster_security_update?taxonomyId=17
http://www.esecurityplanet.com/features/article.php/3873656/article.htm

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/63371