1. Home
  2. CVE Database
  3. CVE-2013-4708
MEDIUM · 4.0

CVE-2013-4708

The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 throu...

Vulnerability Description

The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 through 2.15, and SEIL/neu 2FE Plus 1.80 through 2.15 generates predictable random numbers, which allows remote attackers to bypass RADIUS authentication by sniffing RADIUS traffic.

CVSS Score

4.0

MEDIUM

AV:N/AC:H/Au:N/C:P/I:P/A:N
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
NONE

Affected Products

VendorProductVersions
IijSeil\%2Fx1 Firmware1.00
IijSeil\/X1All versions
IijSeil\%2Fb1 Firmware1.00
IijSeil\/B1All versions
IijSeil\%2Fx2 Firmware1.00
IijSeil\/X2All versions
IijSeil\%2Fx86 Firmware1.00
IijSeil\/X86All versions
IijSeil\%2Fturbo Firmware1.80
IijSeil\/TurboAll versions
IijSeil\%2Fneu 2Fe Plus Firmware1.80
IijSeil\/Neu 2Fe PlusAll versions

Related Weaknesses (CWE)

CWE-310

References

FAQ

What is CVE-2013-4708?

CVE-2013-4708 is a vulnerability with a CVSS score of 4.0 (MEDIUM). The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 throu...

How severe is CVE-2013-4708?

CVE-2013-4708 has been rated MEDIUM with a CVSS base score of 4.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-4708?

Check the references section above for vendor advisories and patch information. Affected products include: Iij Seil\%2Fx1 Firmware, Iij Seil\/X1, Iij Seil\%2Fb1 Firmware, Iij Seil\/B1, Iij Seil\%2Fx2 Firmware.