Heimdal Kerberos Cross-Realm Trust Impersonation Vulnerability

Bugtraq ID: 10035
Class: Input Validation Error
CVE: CVE-2004-0371
Remote: No
Local: Yes
Published: Apr 02 2004 12:00AM
Updated: Jul 12 2009 04:06AM
Credit: This issue was disclosed by the vendor.
Vulnerable: OpenBSD OpenBSD 3.5
OpenBSD OpenBSD 3.4
KTH Heimdal 0.6.1
KTH Heimdal 0.6 .0
KTH Heimdal 0.5.3
KTH Heimdal 0.5.2
KTH Heimdal 0.5.1
+ FreeBSD FreeBSD 5.0
KTH Heimdal 0.5
- Gentoo Linux 1.4 _rc1
- Gentoo Linux 1.2
KTH Heimdal 0.4 e
+ FreeBSD FreeBSD 4.6 -RELEASE
+ FreeBSD FreeBSD 4.6
- FreeBSD FreeBSD 4.4
- FreeBSD FreeBSD 4.3
- FreeBSD FreeBSD 4.2
- FreeBSD FreeBSD 4.1.1
- FreeBSD FreeBSD 4.1
- FreeBSD FreeBSD 4.0
+ S.u.S.E. Linux 8.0
KTH Heimdal 0.4 d
+ S.u.S.E. Linux 7.3
KTH Heimdal 0.4 c
KTH Heimdal 0.4 b
KTH Heimdal 0.4 a
Heimdal Heimdal 0.6.1
Heimdal Heimdal 0.6
Heimdal Heimdal 0.5.2
Heimdal Heimdal 0.5.1
Heimdal Heimdal 0.5 .0
Heimdal Heimdal 0.4 e
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
+ Debian Linux 3.0
Heimdal Heimdal 0.4 d
Heimdal Heimdal 0.4 c
Heimdal Heimdal 0.4 b
Heimdal Heimdal 0.4 a
Not Vulnerable: KTH Heimdal 0.6.1
KTH Heimdal 0.5.3
Heimdal Heimdal 0.6.1
Heimdal Heimdal 0.5.3


 

Privacy Statement
Copyright 2010, SecurityFocus