CVE-2013-4708

Published: Oct 1, 2013Modified: Apr 29, 2026

4.0

Vector

AV:N/AC:H/Au:N/C:P/I:P/A:N

Exploitability: 4.9 / Impact: 4.9

Source: NVD

Description

The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 through 2.15, and SEIL/neu 2FE Plus 1.80 through 2.15 generates predictable random numbers, which allows remote attackers to bypass RADIUS authentication by sniffing RADIUS traffic.

Affected (20)

Products: Iij: Seil%2fx1 Firmware, Seil/x1, Seil%2fb1 Firmware, Seil/b1, Seil%2fx2 Firmware, Seil/x2, Seil%2fx86 Firmware, Seil/x86, Seil%2fturbo Firmware, Seil/turbo, Seil%2fneu 2fe Plus Firmware, Seil/neu 2fe Plus

12 products

Seil%2fturbo Firmware

Seil/turbo

Seil%2fneu 2fe Plus Firmware

Seil/neu 2fe Plus

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fx1 Firmware	Version 1.00
Iij Seil%2fx1 Firmware	Version 4.30
Iij Seil/x1	All versions

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fb1 Firmware	Version 1.00
Iij Seil%2fb1 Firmware	Version 4.30
Iij Seil/b1	All versions

Configuration C

3 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fx2 Firmware	Version 1.00
Iij Seil%2fx2 Firmware	Version 4.30
Iij Seil/x2	All versions

Configuration D

3 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fx86 Firmware	Version 1.00
Iij Seil%2fx86 Firmware	Version 2.80
Iij Seil/x86	All versions

Configuration E

4 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fturbo Firmware	Version 1.80
Iij Seil%2fturbo Firmware	Version 2.05
Iij Seil%2fturbo Firmware	Version 2.15
Iij Seil/turbo	All versions

Configuration F

4 vulnerable

Vulnerable Software	Affected Versions
Iij Seil%2fneu 2fe Plus Firmware	Version 1.80
Iij Seil%2fneu 2fe Plus Firmware	Version 2.05
Iij Seil%2fneu 2fe Plus Firmware	Version 2.15
Iij Seil/neu 2fe Plus	All versions