Winradius · Winradius Server · CVE-2012-3816
**Name of the Vulnerable Software and Affected Versions**
WinRadius Server version 2009
**Description**
The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a long password in an Access-Request packet.
**Recommendations**
For WinRadius Server version 2009, consider restricting the length of passwords accepted in Access-Request packets to prevent the denial of service. At the moment, there is no information about a newer version that contains a fix for this vulnerability.