MiracleLinux 9 : krb5-1.20.1-8.el9 (AXSA:2023-5393:04)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-5393:04 advisory. Kerberos: delegation constrain bypass in S4U2Proxy CVE-2020-17049 Tenable has extracted the preceding description block directly from the MiracleLinux securi...

MiracleLinux 8 : idm:DL1 (AXSA:2024-7462:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7462:01 advisory. Kerberos: delegation constrain bypass in S4U2Proxy CVE-2020-17049 ipa: Invalid CSRF protection CVE-2023-5455 Tenable has extracted the preceding...

EUVD-2017-2995

Malware in sbrugna...

UBUNTU-CVE-2024-2698

A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos was missing a condition for granting the "forwardable" flag on S4U2Self tickets. Fixing this mistake required adding a special case for the checkallowedtodelegate function: If the target service...

CVE-2024-2698 Freeipa: delegation rules allow a proxy service to impersonate any user to access another target service

A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos was missing a condition for granting the "forwardable" flag on S4U2Self tickets. Fixing this mistake required adding a special case for the checkallowedtodelegate function: If the target service...

CVE-2024-2698

CVE-2024-2698 : In FreeIPA, initial MS-SFU handling with MIT Kerberos could grant forwardable on S4U2Self due to a missing condition. Upstream changes required a special case for check_allowed_to_delegate() when the target service arg is NULL (KDC probing general constrained delegation, not a spe...

CVE-2024-2698 Freeipa: delegation rules allow a proxy service to impersonate any user to access another target service

A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos was missing a condition for granting the "forwardable" flag on S4U2Self tickets. Fixing this mistake required adding a special case for the checkallowedtodelegate function: If the target service...

PT-2024-21603 · Unknown +8 · Mit Kerberos +8

Name of the Vulnerable Software and Affected Versions: FreeIPA versions 4.11.0 Description: A vulnerability was found in FreeIPA related to the initial implementation of MS-SFU by MIT Kerberos, which was missing a condition for granting the "forwardable" flag on S4U2Self tickets. This issue...

Kerberos: delegation constrain bypass in S4U2Proxy

It was found that the Kerberos Key Distribution Center KDC delegation feature, Service for User S4U, did not sufficiently protect the tickets it's providing from tempering. A malicious, authenticated service principal allowed to delegate could use this flaw to impersonate a non-forwardable user...

ALSA-2024:0143 Moderate: idm:DL1 security update

AlmaLinux Identity Management IdM is a centralized authentication, identity management, and authorization solution for both traditional and cloud-based enterprise environments. Security Fixes: Kerberos: delegation constrain bypass in S4U2Proxy CVE-2020-17049 ipa: Invalid CSRF protection...

Moderate: Red Hat Security Advisory: krb5 security, bug fix, and enhancement update

An update for krb5 is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

Kerberos TGT/TGS Ticket Requester

This module requests TGT/TGS Kerberos tickets from the KDC Module Options msf use auxiliary/admin/kerberos/getticket msf auxiliarygetticket show actions ...actions... msf auxiliarygetticket set ACTION msf auxiliarygetticket show options ...show and set options... msf auxiliarygetticket run This...

Kerberos constrained delegation ticket

Description Kerberos constrained delegation, known also as S4U2Proxy, requires that the intermediate service present to the KDC a valid Kerberos ticket including the PAC obtained by the user as evidence that they had authenticated, so that a new ticket can be issued for the target server. The...

Slackware Linux 15.0 / current krb5 Vulnerability (SSA:2022-320-01)

The version of krb5 installed on the remote host is prior to 1.19.2 / 1.20.1. It is, therefore, affected by a vulnerability as referenced in the SSA:2022-320-01 advisory. - The Kerberos libraries used by Samba provide a mechanism for authenticating a user or service by means of tickets that can...

Security fix for the ALT Linux 8 package samba version 4.9.9-alt1

June 26, 2019 Evgeny Sinelnikov 4.9.9-alt1 - Update to summer security release of samba-4.9 backported to p8 - Security fixes: + CVE-2019-12435 Samba AD DC Denial of Service in DNS management server dnsserver + CVE-2018-16860 Samba AD DC S4U2Self/S4U2Proxy unkeyed checksum + CVE-2018-16852 NULL...

Amazon Linux AMI : krb5 (ALAS-2018-1010)

A denial of service flaw was found in MIT Kerberos krb5kdc service. An authenticated attacker could use this flaw to cause krb5kdc to exit with an assertion failure by making an invalid S4U2Self or S4U2Proxy request.CVE-2017-11368 An authentication bypass flaw was found in the way krb5's certauth...

RHEL 7 : krb5 (RHSA-2018:0666)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:0666 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending...

krb5: Invalid S4U2Self or S4U2Proxy request causes assertion failure

A denial of service flaw was found in MIT Kerberos krb5kdc service. An authenticated attacker could use this flaw to cause krb5kdc to exit with an assertion failure by making an invalid S4U2Self or S4U2Proxy request...

[SECURITY] Fedora 27 Update: heimdal-7.5.0-1.fc27

Kerberos 5 is a network authentication and single sign-on system. Heimdal is a free Kerberos 5 implementation without export restrictions written from the spec rfc1510 and successors including advanced features like thread safety, IPv6, master-slave replication of Kerberos Key Distribution Center...

FreeBSD : krb5 -- Multiple vulnerabilities (3f3837cc-48fb-4414-aa46-5b1c23c9feae)

MIT reports : CVE-2017-11368 : In MIT krb5 1.7 and later, an authenticated attacker can cause an assertion failure in krb5kdc by sending an invalid S4U2Self or S4U2Proxy request. CVE-2017-11462 : RFC 2744 permits a GSS-API implementation to delete an existing security context on a second or...