3 matches found
CVE-2014-5351
CVE-2014-5351 affects MIT Kerberos 5 (krb5) kadmind: the kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c sends old keys in response to a -randkey -keepold request, enabling remote authenticated users to forge tickets by leveraging administrative access. Affected: krb5
CVE-2014-5351
The kadm5randkeyprincipal3 function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 before 1.13 sends old keys in a response to a -randkey -keepold request, which allows remote authenticated users to forge tickets by leveraging administrative access...
CVE-2014-5351
The kadm5randkeyprincipal3 function in lib/kadm5/srv/svrprincipal.c in kadmind in MIT Kerberos 5 aka krb5 before 1.13 sends old keys in a response to a -randkey -keepold request, which allows remote authenticated users to forge tickets by leveraging administrative access...