9 matches found
EUVD-2004-0371
Malware in sbrugna...
Heimdal: Multiple Vulnerabilities
Background Heimdal is a free implementation of Kerberos 5. Description Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a Kerberos Domain Controller. Please review the CVE identifiers referenced below for details. Impact Please...
FreeBSD : Incorrect cross-realm trust handling in Heimdal (bfb36941-84fa-11d8-a41f-0020ed76ef5a)
Heimdal does not correctly validate the transited' field of Kerberos tickets when computing the authentication path. This could allow a rogue KDC with which cross-realm relationships have been established to impersonate any KDC in the authentication path. %NASLMINLEVEL 70300 C Tenable Network...
Debian DSA-476-1 : heimdal - cross-realm
According to a security advisory from the heimdal project, heimdal, a suite of software implementing the Kerberos protocol, has 'a cross-realm vulnerability allowing someone with control over a realm to impersonate anyone in the cross-realm trust path.' %NASLMINLEVEL 70300 C Tenable Network...
GLSA-200404-09 : Cross-realm trust vulnerability in Heimdal
The remote host is affected by the vulnerability described in GLSA-200404-09 Cross-realm trust vulnerability in Heimdal Heimdal does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the...
FreeBSD : Incorrect cross-realm trust handling in Heimdal (65)
The following package needs to be updated: heimdal %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgbfb3694184fa11d8a41f0020ed76ef5a.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...
FreeBSD-SA-04:08.heimdal
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:08.heimdal Security Advisory The FreeBSD Project Topic: heimdal cross-realm trust vulnerability Category: core Module: cryptoheimdal Announced: 2004-05-05...
Cross-realm trust vulnerability in Heimdal
Background Heimdal is a free implementation of Kerberos 5. Description Heimdal does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path. Impact Remote attackers with...
CVE-2004-0371
Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path...