Test ID:	1.3.6.1.4.1.25623.1.0.72033
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2012:047 (freeradius)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to freeradius announced via advisory MDVSA-2012:047. A vulnerability has been found and corrected in freeradius: The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies from OCSP responders, which allows remote attackers to bypass authentication by using the EAP-TLS protocol with a revoked X.509 client certificate (CVE-2011-2701). The updated packages have been patched to correct this issue. Affected: 2011. Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:047 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2701 BugTraq ID: 48880 http://www.securityfocus.com/bid/48880 Bugtraq: 20110725 [DSB-2011-01] Security Advisory FreeRADIUS 2.1.11 (Google Search) http://www.securityfocus.com/archive/1/518974/100/0/threaded https://bugzilla.redhat.com/show_bug.cgi?id=724815 https://www.dfn-cert.de/informationen/Sicherheitsbulletins/dsb-2011-01.html http://www.openwall.com/lists/oss-security/2011/07/15/6 http://www.openwall.com/lists/oss-security/2011/07/18/2 http://www.openwall.com/lists/oss-security/2011/07/20/9 http://securitytracker.com/id?1025833 http://secunia.com/advisories/45425 http://securityreason.com/securityalert/8325 XForce ISS Database: freeradius-certificate-security-bypass(68782) https://exchange.xforce.ibmcloud.com/vulnerabilities/68782
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.