Описание
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 1.4.3-5ubuntu0.11 |
| devel | not-affected | 1.8.3+dfsg-3 |
| hardy | not-affected | 1.6.dfsg.3~beta1-2ubuntu1.5 |
| karmic | released | 1.7dfsg~beta3-1ubuntu0.7 |
| lucid | not-affected | 1.8.1+dfsg-2ubuntu0.3 |
| maverick | not-affected | 1.8.1+dfsg-5ubuntu0.1 |
| upstream | released | 1.7.1 |
Показывать по
2.1 Low
CVSS2
Связанные уязвимости
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 doe ...
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
2.1 Low
CVSS2