CVE-2009-2358

CVE-2009-2358

EPSS 0.3%

TekRADIUS 3.0 uses BUILTIN\Users:R permissions for the TekRADIUS.ini file, which allows local users to obtain obfuscated database credentials by reading this file.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.nth-dimension.org.uk/utils/get.php?downloadsid=56 http://www.securityfocus.com/archive/1/504740/100/0/threaded http://www.vupen.com/english/advisories/2009/1816