QwikSec

Security Database

CVE

CWE

Training

CVE-2010-1323

Published: Dec 2, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message via certain checksums that (1) are unkeyed or (2) use RC4 keys.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

SUSE-SU-2012:0042

vendor-advisory

x_refsource_SUSE

vdb-entry

x_refsource_VUPEN

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

FEDORA-2010-18425

vendor-advisory

x_refsource_FEDORA

vdb-entry

x_refsource_BID

20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console

mailing-list

x_refsource_BUGTRAQ

http://kb.vmware.com/kb/1035108

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_HP

oval:org.mitre.oval:def:12121

vdb-entry

signature

x_refsource_OVAL

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_MANDRIVA

vdb-entry

x_refsource_OSVDB

20101130 MITKRB5-SA-2010-007 Multiple checksum handling vulnerabilities [CVE-2010-1324 CVE-2010-1323 CVE-2010-4020 CVE-2010-4021]

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_REDHAT

SUSE-SR:2010:023

vendor-advisory

x_refsource_SUSE

http://www.vmware.com/security/advisories/VMSA-2011-0007.html

x_refsource_CONFIRM

APPLE-SA-2011-03-21-1

vendor-advisory

x_refsource_APPLE

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_HP

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-007.txt

x_refsource_CONFIRM

vendor-advisory

x_refsource_HP

vdb-entry

x_refsource_VUPEN

http://www.vmware.com/security/advisories/VMSA-2011-0012.html

x_refsource_CONFIRM

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

SUSE-SU-2012:0010

vendor-advisory

x_refsource_SUSE

[security-announce] 20110428 VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console

mailing-list

x_refsource_MLIST

vdb-entry

x_refsource_SECTRACK

20110428 VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates for Likewise components and ESX Service Console

mailing-list

x_refsource_BUGTRAQ

FEDORA-2010-18409

vendor-advisory

x_refsource_FEDORA

SUSE-SR:2010:024

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_UBUNTU

vendor-advisory

x_refsource_HP

third-party-advisory

x_refsource_SECUNIA

http://support.apple.com/kb/HT4581

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.