oval:org.mitre.oval:def:250
Definition Id: oval:org.mitre.oval:def:250 | |||
Oval ID: | oval:org.mitre.oval:def:250 | ||
Title: | Kerberos krb4 Ticket Splicing Vulnerability | ||
Description: | Certain weaknesses in the implementation of version 4 of the Kerberos protocol (krb4) in the krb5 distribution, when triple-DES keys are used to key krb4 services, allow an attacker to create krb4 tickets for unauthorized principals using a cut-and-paste attack and "ticket splicing." | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2003-0139 | Version: | 2 |
Platform(s): | Red Hat Linux 9 | Product(s): | krb5 |
Definition Synopsis: | |||
|