message authenticator

About this tag
The message authenticator tag on WindowsForum.com covers discussions about enabling the RADIUS Message-Authenticator attribute as a security mitigation for CVE-2024-3596. This vulnerability affects Hitachi Energy FOX61x, AFS, AFR, and AFF devices, allowing an on-path attacker to forge RADIUS responses using a chosen-prefix collision attack against the MD5-based Response Authenticator. Enabling the Message-Authenticator option on both the device and RADIUS servers is recommended to prevent such attacks. The tag content focuses on industrial network equipment and RADIUS protocol hardening, not general Windows or consumer hardware topics.
  1. Mitigate CVE-2024-3596: Enable RADIUS Message-Authenticator on FOX61x

    Hitachi Energy has confirmed that certain FOX61x devices are affected by a critical RADIUS protocol vulnerability (tracked as CVE‑2024‑3596) that allows an on‑path attacker to forge RADIUS responses by exploiting a chosen‑prefix collision attack against the MD5‑based Response Authenticator...
  2. CVE-2024-3596: Enable RADIUS Message Authenticator on Hitachi AFS AFR AFF

    Hitachi Energy's AFS, AFR and AFF series of substation and network edge devices are vulnerable to a cryptographic attack against the RADIUS protocol that can let a local attacker forge authentication responses, potentially granting or denying network access, corrupting session state, and...