Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD4CCBD40D-03F7-11E0-BF50-001A926C7637
HistoryNov 30, 2010 - 12:00 a.m.

krb5 -- client impersonation vulnerability

2010-11-3000:00:00
vuxml.freebsd.org
14

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.6%

JSON

The MIT Kerberos team reports:

MIT krb5 KDC may issue tickets not requested
by a client, based on an attacker-chosen KrbFastArmoredReq.
An authenticated remote attacker that controls a legitimate service
principal could obtain a valid service ticket to itself containing
valid KDC-generated authorization data for a client whose TGS-REQ it
has intercepted. The attacker could then use this ticket for
S4U2Proxy to impersonate the targeted client even if the client
never authenticated to the subverted service. The vulnerable
configuration is believed to be rare.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchkrb5= 1.7.0UNKNOWN
FreeBSDanynoarchkrb5< 1.7.2UNKNOWN

Related

debiancve 1
openvas 12
prion 1
nvd 1
cve 1
cvelist 1
nessus 16
ubuntucve 1
securityvulns 5
ubuntu 1
vmware 1
ibm 1
gentoo 1
debiancve
debiancve
CVE-2010-4021
2010-12-02 16:22:21
openvas
openvas
FreeBSD Ports: krb5
2011-01-24 00:00:00
FreeBSD Ports: krb5
2011-01-24 00:00:00
Ubuntu Update for krb5 vulnerabilities USN-1030-1
2010-12-23 00:00:00
prion
prion
Design/Logic Flaw
2010-12-02 16:22:00
nvd
nvd
CVE-2010-4021
2010-12-02 16:22:21
cve
cve
CVE-2010-4021
2010-12-02 16:22:21
cvelist
cvelist
CVE-2010-4021
2010-12-02 16:00:00
nessus
nessus
FreeBSD : krb5 -- client impersonation vulnerability (4ccbd40d-03f7-11e0-bf50-001a926c7637)
2010-12-10 00:00:00
CentOS 4 / 5 : krb5 (CESA-2010:0926)
2010-12-02 00:00:00
openSUSE Security Update : krb5 (openSUSE-SU-2010:1053-1)
2011-05-05 00:00:00
ubuntucve
ubuntucve
CVE-2010-4021
2010-12-02 00:00:00
securityvulns
securityvulns
MIT Kerberos 5 multiple checksum vulnerabilities
2010-12-01 00:00:00
MITKRB5-SA-2010-007 Multiple checksum handling vulnerabilities [CVE-2010-1324 CVE-2010-1323 CVE-2010-4020 CVE-2010-4021]
2010-12-01 00:00:00
VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
2011-05-02 00:00:00
ubuntu
ubuntu
Kerberos vulnerabilities
2010-12-09 00:00:00
vmware
vmware
VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console
2011-04-28 00:00:00
ibm
ibm
Security Bulletin: Multiple security vulnerabilities found in open source code that is shipped with IBM Security Verify Access
2022-07-06 18:27:44
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00

2.1 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:S/C:N/I:P/A:N

0.004 Low

EPSS

Percentile

73.6%

JSON
Related for 4CCBD40D-03F7-11E0-BF50-001A926C7637
debiancve1openvas12prion1nvd1cve1cvelist1nessus16ubuntucve1securityvulns5ubuntu1vmware1ibm1gentoo1