The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not
properly restrict the use of TGT credentials for armoring TGS requests,
which might allow remote authenticated users to impersonate a client by
rewriting an inner request, aka a “KrbFastReq forgery issue.”
Author | Note |
---|---|
mdeslaur | 1.7 only |