Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD420243E9-A840-11E7-B5AF-A4BADB2F4699
HistoryJul 12, 2017 - 12:00 a.m.

FreeBSD -- heimdal KDC-REP service name validation vulnerability

2017-07-1200:00:00
vuxml.freebsd.org
15

0.001 Low

EPSS

Percentile

23.1%

JSON

Problem Description:
There is a programming error in the Heimdal implementation
that used an unauthenticated, plain-text version of the
KDC-REP service name found in a ticket.
Impact:
An attacker who has control of the network between a
client and the service it talks to will be able to impersonate
the service, allowing a successful man-in-the-middle (MITM)
attack that circumvents the mutual authentication.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchfreebsd=Β 11.0UNKNOWN
FreeBSDanynoarchfreebsd<Β 11.0_11UNKNOWN

Related

nessus 1
ibm 1
cvelist 1
cve 1
prion 1
cloudfoundry 1
nessus
nessus
FreeBSD : FreeBSD -- heimdal KDC-REP service name validation vulnerability (420243e9-a840-11e7-b5af-a4badb2f4699)
2017-10-04 00:00:00
ibm
ibm
Security Bulletin: Fix available for Privilege Escalation Vulnerability in IBM CΓΊram Social Program Management (CVE-2017-1110)
2018-06-17 13:09:26
cvelist
cvelist
CVE-2017-1110
2017-08-14 00:00:00
cve
cve
CVE-2017-1110
2017-08-29 01:35:00
prion
prion
Design/Logic Flaw
2017-08-29 01:35:00
cloudfoundry
cloudfoundry
USN-4309-1: Vim vulnerabilities | Cloud Foundry
2020-04-08 00:00:00

0.001 Low

EPSS

Percentile

23.1%

JSON
Related for 420243E9-A840-11E7-B5AF-A4BADB2F4699
nessus1ibm1cvelist1cve1prion1cloudfoundry1