CVE Vulnerabilities

CVE-2004-0371

Published: May 04, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path.

Affected Software

Name Vendor Start Version End Version
Heimdal Kth 0.4a (including) 0.4a (including)
Heimdal Kth 0.4b (including) 0.4b (including)
Heimdal Kth 0.4c (including) 0.4c (including)
Heimdal Kth 0.4d (including) 0.4d (including)
Heimdal Kth 0.4e (including) 0.4e (including)
Heimdal Kth 0.5 (including) 0.5 (including)
Heimdal Kth 0.5.1 (including) 0.5.1 (including)
Heimdal Kth 0.5.2 (including) 0.5.2 (including)
Heimdal Kth 0.6.0 (including) 0.6.0 (including)

References