mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-03 00:04:43 +00:00
729 B
729 B
CVE-2011-2701
Description
The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies from OCSP responders, which allows remote attackers to bypass authentication by using the EAP-TLS protocol with a revoked X.509 client certificate.
POC
Reference
Github
No PoCs found on GitHub currently.