Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unkeyed PAC checksum, or (3) a KrbFastArmoredReq checksum based on an RC4 key.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MIT Kerberos 5设计权限提升漏洞
Vulnerability Description
MIT Kerberos 5 是一种常用的开源Kerberos实现。 MIT Kerberos 5(又名krb5)1.7.x,1.8.x至1.8.3版本不能正确地确定可接受的校验。远程攻击者可以借助某些(1)非密钥校验,(2)非密钥PAC校验,或者(3)基于RC4密钥的KrbFastArmoredReq校验伪造GSS令牌,获取特权,或者引起其他未明影响。
CVSS Information
N/A
Vulnerability Type
N/A