EUVD-2004-0371

Malware in sbrugna...

Heimdal: Multiple Vulnerabilities

Background Heimdal is a free implementation of Kerberos 5. Description Multiple vulnerabilities have been discovered in Heimdal, the worst of which could lead to remote code execution on a Kerberos Domain Controller. Please review the CVE identifiers referenced below for details. Impact Please...

krb5 security update

CentOS Errata and Security Advisory CESA-2010:0343 Updated krb5 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CV...

FreeBSD : Incorrect cross-realm trust handling in Heimdal (bfb36941-84fa-11d8-a41f-0020ed76ef5a)

Heimdal does not correctly validate the transited' field of Kerberos tickets when computing the authentication path. This could allow a rogue KDC with which cross-realm relationships have been established to impersonate any KDC in the authentication path. %NASLMINLEVEL 70300 C Tenable Network...

Debian DSA-476-1 : heimdal - cross-realm

According to a security advisory from the heimdal project, heimdal, a suite of software implementing the Kerberos protocol, has 'a cross-realm vulnerability allowing someone with control over a realm to impersonate anyone in the cross-realm trust path.' %NASLMINLEVEL 70300 C Tenable Network...

GLSA-200404-09 : Cross-realm trust vulnerability in Heimdal

The remote host is affected by the vulnerability described in GLSA-200404-09 Cross-realm trust vulnerability in Heimdal Heimdal does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the...

FreeBSD : Incorrect cross-realm trust handling in Heimdal (65)

The following package needs to be updated: heimdal %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkgbfb3694184fa11d8a41f0020ed76ef5a.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

FreeBSD-SA-04:08.heimdal

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-04:08.heimdal Security Advisory The FreeBSD Project Topic: heimdal cross-realm trust vulnerability Category: core Module: cryptoheimdal Announced: 2004-05-05...

Cross-realm trust vulnerability in Heimdal

Background Heimdal is a free implementation of Kerberos 5. Description Heimdal does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path. Impact Remote attackers with...

CVE-2004-0371

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path...