Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) Information Disclosure Vulnerability

Last Update Date: 22 Aug 2012 12:53 Release Date: 22 Aug 2012 4441 Views

RISK: Medium Risk

Medium Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Cryptographic weaknesses have been identified in the Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) which could be exploited by attackers to obtain user credentials. Those credentials could then be re-used to authenticate the attacker to network resources, and the attacker could take any action that the user could take on that network resource.

Impact

  • Information Disclosure

System / Technologies affected

  • Only VPN solutions that rely on PPTP in combination with MS-CHAP v2 as the sole authentication method are vulnerable to this issue.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Apache Web Server Multiple Vulnerabilities

22 Aug 2012 4143 Views

Next

Adobe Flash Player Multiple Vulnerabilities

22 Aug 2012 4278 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY