Showing 1 - 8 of 8

CVE-2017-11103

Status Candidate

Overview

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encrypted version stored in 'enc_part' instead of the unencrypted version stored in 'ticket'. Use of the unencrypted version provides an opportunity for successful server impersonation and other attacks. NOTE: this CVE is only for Heimdal and other products that embed Heimdal code; it does not apply to other instances in which this part of the Kerberos 5 protocol specification is violated.

Related Files

Apple Security Advisory 2017-10-31-9: Posted Nov 1, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-10-31-9 - iOS 11 addresses TLS weaknesses, denial of service, arbitrary code execution, and various other vulnerabilities.; tags | advisory, denial of service, arbitrary, vulnerability, code execution; systems | cisco, apple, ios; advisories | CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-11103, CVE-2017-11120, CVE-2017-11121, CVE-2017-13782, CVE-2017-13812, CVE-2017-13813, CVE-2017-13814, CVE-2017-13815, CVE-2017-13816, CVE-2017-13817, CVE-2017-13818, CVE-2017-13821, CVE-2017-13822, CVE-2017-13825, CVE-2017-13828, CVE-2017-13830, CVE-2017-13831, CVE-2017-13832, CVE-2017-13834; MD5 | 60d493af6335566be6f6af354b214a48; Download | Favorite | Comments (0)

Apple Security Advisory 2017-10-31-2: Posted Nov 1, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-10-31-2 - macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, Security Update 2017-004 El Capitan are now available and address TLS weaknesses, issues in Apache, and many more vulnerabilities.; tags | advisory, vulnerability; systems | apple; advisories | CVE-2016-2161, CVE-2016-4736, CVE-2016-5387, CVE-2016-8740, CVE-2016-8743, CVE-2017-1000100, CVE-2017-1000101, CVE-2017-11103, CVE-2017-11108, CVE-2017-11541, CVE-2017-11542, CVE-2017-11543, CVE-2017-12893, CVE-2017-12894, CVE-2017-12895, CVE-2017-12896, CVE-2017-12897, CVE-2017-12898, CVE-2017-12899, CVE-2017-12900, CVE-2017-12901, CVE-2017-12902, CVE-2017-12985, CVE-2017-12986, CVE-2017-12987, CVE-2017-1298; MD5 | 0a3f85251303c010a3fa74783867a502; Download | Favorite | Comments (0)

Apple Security Advisory 2017-09-25-4: Posted Sep 28, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-09-25-4 - iOS 11 addresses denial of service, service impersonation, and various other vulnerabilities.; tags | advisory, denial of service, vulnerability; systems | cisco, apple, ios; advisories | CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-11103, CVE-2017-11120, CVE-2017-11121, CVE-2017-7072, CVE-2017-7078, CVE-2017-7080, CVE-2017-7081, CVE-2017-7083, CVE-2017-7085, CVE-2017-7086, CVE-2017-7087, CVE-2017-7088, CVE-2017-7089, CVE-2017-7090, CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094, CVE-2017-7095, CVE-2017-7096; MD5 | 7de43f34b082d4813011558c39658d04; Download | Favorite | Comments (0)

Apple Security Advisory 2017-09-25-1: Posted Sep 28, 2017; Authored by Apple | Site apple.com; Apple Security Advisory 2017-09-25-1 - macOS High Sierra 10.13 is now available and addresses denial of service, insecure transit, and various other vulnerabilities.; tags | advisory, denial of service, vulnerability; systems | apple; advisories | CVE-2016-9042, CVE-2016-9063, CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843, CVE-2017-0381, CVE-2017-1000373, CVE-2017-10989, CVE-2017-11103, CVE-2017-6451, CVE-2017-6452, CVE-2017-6455, CVE-2017-6458, CVE-2017-6459, CVE-2017-6460, CVE-2017-6462, CVE-2017-6463, CVE-2017-6464, CVE-2017-7074, CVE-2017-7077, CVE-2017-7078, CVE-2017-7080, CVE-2017-7082, CVE-2017-7083, CVE-2017-7084, CVE-2017-7086, CVE-2017-7114; MD5 | afcf3a39067601a76d9858d678ec3ae1; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-3353-4: Posted Jul 24, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3353-4 - USN-3353-1 fixed a vulnerability in Heimdal. This update provides the corresponding update for Samba. Jeffrey Altman, Viktor Dukhovni, and Nicolas Williams discovered that Samba clients incorrectly trusted unauthenticated portions of Kerberos tickets. A remote attacker could use this to impersonate trusted network services or perform other attacks. Various other issues were also addressed.; tags | advisory, remote; systems | linux, ubuntu; advisories | CVE-2017-11103; MD5 | dd356174d4dc120cafdbb3f3788aed1d; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-3353-3: Posted Jul 24, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3353-3 - USN-3353-1 fixed a vulnerability in Heimdal. This update provides the corresponding update for Ubuntu 12.04 ESM.; tags | advisory; systems | linux, ubuntu; advisories | CVE-2017-11103; MD5 | 9f922f5f78d08f4481fbacb90821d3af; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-3353-2: Posted Jul 14, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3353-2 - USN-3353-1 fixed a vulnerability in Heimdal. This update provides the corresponding update for Samba. Jeffrey Altman, Viktor Dukhovni, and Nicolas Williams discovered that Samba clients incorrectly trusted unauthenticated portions of Kerberos tickets. A remote attacker could use this to impersonate trusted network servers or perform other attacks.; tags | advisory, remote; systems | linux, ubuntu; advisories | CVE-2017-11103; MD5 | 58e0ef79e0e7c5ad4201a654bb0cb440; Download | Favorite | Comments (0)

Ubuntu Security Notice USN-3353-1: Posted Jul 14, 2017; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 3353-1 - Jeffrey Altman, Viktor Dukhovni, and Nicolas Williams discovered that Heimdal clients incorrectly trusted unauthenticated portions of Kerberos tickets. A remote attacker could use this to impersonate trusted network services or perform other attacks.; tags | advisory, remote; systems | linux, ubuntu; advisories | CVE-2017-11103; MD5 | f41fb95fe553cf1266479bdfe22ad0d2; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next

Want To Donate?

Bitcoin: 18PFeCVLwpmaBuQqd5xAYZ8bZdvbyEWMmU

Top Authors In Last 30 Days

Red Hat 70 files
Ubuntu 45 files
Debian 17 files
LiquidWorm 13 files
Google Security Research 10 files
Apple 9 files
Berk Dusunur 6 files
Slackware Security Team 6 files
Gentoo 6 files
lokihardt 5 files

File Archives

Systems

AIX (409)
Apple (1,563)
BSD (336)
Cisco (1,815)
Debian (5,551)
Fedora (1,683)
FreeBSD (1,196)
Gentoo (3,586)
HPUX (865)
iOS (176)
iPhone (103)
IRIX (219)
Juniper (66)
Linux (33,730)
Mac OS X (653)
Mandriva (3,105)
NetBSD (255)
OpenBSD (456)
RedHat (6,640)
Slackware (836)
Solaris (1,569)
SUSE (1,444)
Ubuntu (5,716)
UNIX (8,303)
UnixWare (172)
Windows (5,353)
Other