Lucene search
K

4 matches found

CVE
CVE
•added 2017/07/13 1:0 p.m.•608 views

CVE-2017-11103

CVE-2017-11103 affects Heimdal (Kerberos); vulnerability arises from improper handling of the KDC-REP service name in krb5_extract_ticket, enabling remote service impersonation when the unencrypted service name is used instead of the encrypted enc_part. Apple’s security content (HT208112/HT208221...

8.1CVSS7.9AI score0.05118EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
•added 2017/07/13 1:0 p.m.•26 views

CVE-2017-11103

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In krb5extractticket the KDC-REP service name must be obtained from the encrypted version stored i...

8AI score0.05118EPSS
Exploits0References12
UbuntuCve
UbuntuCve
•added 2017/07/13 12:0 a.m.•24 views

CVE-2017-11103

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In krb5extractticket the KDC-REP service name must be obtained from the encrypted version stored i...

8.1CVSS6.8AI score0.05118EPSS
Exploits0References12
OSV
OSV
•added 2017/07/13 12:0 a.m.•1 views

UBUNTU-CVE-2017-11103

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In krb5extractticket the KDC-REP service name must be obtained from the encrypted version stored i...

8.1CVSS6.8AI score0.05118EPSS
Exploits0References13
Rows per page
Query Builder