System Security Services Daemon (SSSD) prior to 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate malicious users to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting ticket (TGT); and might allow remote malicious users to bypass intended access restrictions via vectors involving an arbitrary password in conjunction with a valid TGT.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fedoraproject sssd |
||
fedoraproject sssd 0.6.1 |
||
fedoraproject sssd 0.5.0 |
||
fedoraproject sssd 0.99.1 |
||
fedoraproject sssd 0.99.0 |
||
fedoraproject sssd 0.7.1 |
||
fedoraproject sssd 0.7.0 |
||
fedoraproject sssd 0.3.3 |
||
fedoraproject sssd 0.3.2 |
||
fedoraproject sssd 0.3.0 |
||
fedoraproject sssd 0.2.1 |
||
fedoraproject sssd 0.3.1 |
||
fedoraproject sssd 0.4.1 |
||
fedoraproject sssd 0.6.0 |
||
fedoraproject sssd 0.4.0 |