CVE Vulnerabilities

CVE-2010-1323

Published: Dec 02, 2010 | Modified: Jan 21, 2020
CVSS 3.x
3.7
LOW
Source:
NVD
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:N/I:P/A:N
RedHat/V2
2.6 MODERATE
AV:N/AC:H/Au:N/C:N/I:P/A:N
RedHat/V3
Ubuntu
MEDIUM

MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message via certain checksums that (1) are unkeyed or (2) use RC4 keys.

Affected Software

Name Vendor Start Version End Version
Kerberos Mit 5-1.5.4 (including) 5-1.5.4 (including)
Kerberos_5 Mit 1.3 (including) 1.3 (including)
Kerberos_5 Mit 1.3-alpha1 (including) 1.3-alpha1 (including)
Kerberos_5 Mit 1.3.1 (including) 1.3.1 (including)
Kerberos_5 Mit 1.3.2 (including) 1.3.2 (including)
Kerberos_5 Mit 1.3.3 (including) 1.3.3 (including)
Kerberos_5 Mit 1.3.4 (including) 1.3.4 (including)
Kerberos_5 Mit 1.3.5 (including) 1.3.5 (including)
Kerberos_5 Mit 1.3.6 (including) 1.3.6 (including)
Kerberos_5 Mit 1.4 (including) 1.4 (including)
Kerberos_5 Mit 1.4.1 (including) 1.4.1 (including)
Kerberos_5 Mit 1.4.2 (including) 1.4.2 (including)
Kerberos_5 Mit 1.4.3 (including) 1.4.3 (including)
Kerberos_5 Mit 1.4.4 (including) 1.4.4 (including)
Kerberos_5 Mit 1.5 (including) 1.5 (including)
Kerberos_5 Mit 1.5.1 (including) 1.5.1 (including)
Kerberos_5 Mit 1.5.2 (including) 1.5.2 (including)
Kerberos_5 Mit 1.5.3 (including) 1.5.3 (including)
Kerberos_5 Mit 1.6 (including) 1.6 (including)
Kerberos_5 Mit 1.6.1 (including) 1.6.1 (including)
Kerberos_5 Mit 1.6.2 (including) 1.6.2 (including)
Kerberos_5 Mit 1.7 (including) 1.7 (including)
Kerberos_5 Mit 1.7.1 (including) 1.7.1 (including)
Kerberos_5 Mit 1.8 (including) 1.8 (including)
Kerberos_5 Mit 1.8.1 (including) 1.8.1 (including)
Kerberos_5 Mit 1.8.2 (including) 1.8.2 (including)
Kerberos_5 Mit 1.8.3 (including) 1.8.3 (including)
Red Hat Enterprise Linux 4 RedHat krb5-0:1.3.4-62.el4_8.3 *
Red Hat Enterprise Linux 5 RedHat krb5-0:1.6.1-36.el5_5.6 *
Red Hat Enterprise Linux 6 RedHat krb5-0:1.8.2-3.el6_0.3 *
Krb5 Ubuntu dapper *
Krb5 Ubuntu hardy *
Krb5 Ubuntu karmic *
Krb5 Ubuntu lucid *
Krb5 Ubuntu maverick *

References