CVE-2001-1444
The CVE-2001-1444 issue concerns the Kerberos Telnet protocol as implemented by KTH Kerberos IV and Kerberos V (Heimdal). The vulnerability arises because the server-sent authentication and encryption options are not encrypted, enabling a man-in-the-middle to downgrade authentication and encrypti...