Published: 31/07/2019 Updated: 14/08/2019

CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8

CVSS v3 Base Score: 7.5 | Impact Score: 5.9 | Exploitability Score: 1.6

VMScore: 534

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (principal) in the request with any desired user name (principal) that exists in the KDC effectively obtaining a ticket for that principal.

Vulnerable Product	Search on Vulmon	Subscribe to Product
samba samba
heimdal project heimdal

Debian Bug report logs - #928966 heimdal: CVE-2018-16860 Package: src:heimdal; Maintainer for src:heimdal is Brian May <bam@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 14 May 2019 07:39:02 UTC Severity: important Tags: security, upstream Found in versions heimdal/710+dfsg-13, heim ...

Debian Bug report logs - #929064 heimdal: CVE-2019-12098: krb5: always confirm PA-PKINIT-KX for anon PKINIT Package: src:heimdal; Maintainer for src:heimdal is Brian May <bam@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 16 May 2019 09:06:02 UTC Severity: important Tags: security, upst ...

Samba could allow unintended access to network services ...

Several security issues were fixed in Heimdal ...

Several vulnerabilities were discovered in Heimdal, an implementation of Kerberos 5 that aims to be compatible with MIT Kerberos CVE-2018-16860 Isaac Boukris and Andrew Bartlett discovered that Heimdal was susceptible to man-in-the-middle attacks caused by incomplete checksum validation Details on the issue can be found in the Samba ...

Isaac Boukris and Andrew Bartlett discovered that the S4U2Self Kerberos extension used in Samba's Active Directory support was susceptible to man-in-the-middle attacks caused by incomplete checksum validation Details can be found in the upstream advisory at wwwsambaorg/samba/security/CVE-2018-16860html For the stable distribution (stret ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-8-13-1 Additional information for APPLE-SA-2019-7-22-2 macOS Mojave 10146, Security Update 2019-004 Hig ...

Full Disclosure mailing list archives   By Date By Thread </form>    APPLE-SA-2019-8-13-2 Additional information for APPLE-SA-2019-7-22-1 iOS 124  <!--X-Head-o ...

CWE-358 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16860 https://www.samba.org/samba/security/CVE-2018-16860.html https://seclists.org/bugtraq/2019/Aug/21 https://seclists.org/bugtraq/2019/Aug/23 https://seclists.org/bugtraq/2019/Aug/25 https://seclists.org/bugtraq/2019/Aug/22 http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00026.html http://seclists.org/fulldisclosure/2019/Aug/13 http://seclists.org/fulldisclosure/2019/Aug/14 http://seclists.org/fulldisclosure/2019/Aug/11 http://seclists.org/fulldisclosure/2019/Aug/15 https://www.synology.com/security/advisory/Synology_SA_19_23 https://support.apple.com/HT210346 https://support.apple.com/HT210348 https://support.apple.com/HT210351 https://support.apple.com/HT210353 https://security.gentoo.org/glsa/202003-52 https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928966 https://usn.ubuntu.com/3976-1/

CVE-2018-16860

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

References

Vulmon Search

About

Products

Connect