CVE Vulnerabilities

CVE-2004-0371

Published: May 04, 2004 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path.

Affected Software

Name Vendor Start Version End Version
Heimdal Kth 0.4a (including) 0.4a (including)
Heimdal Kth 0.4b (including) 0.4b (including)
Heimdal Kth 0.4c (including) 0.4c (including)
Heimdal Kth 0.4d (including) 0.4d (including)
Heimdal Kth 0.4e (including) 0.4e (including)
Heimdal Kth 0.5 (including) 0.5 (including)
Heimdal Kth 0.5.1 (including) 0.5.1 (including)
Heimdal Kth 0.5.2 (including) 0.5.2 (including)
Heimdal Kth 0.6.0 (including) 0.6.0 (including)

References