FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- heimdal KDC-REP service name validation vulnerability

Affected packages
11.0 <= FreeBSD < 11.0_11
10.3 <= FreeBSD < 10.3_20

Details

VuXML ID 420243e9-a840-11e7-b5af-a4badb2f4699
Discovery 2017-07-12
Entry 2017-10-03

Problem Description:

There is a programming error in the Heimdal implementation that used an unauthenticated, plain-text version of the KDC-REP service name found in a ticket.

Impact:

An attacker who has control of the network between a client and the service it talks to will be able to impersonate the service, allowing a successful man-in-the-middle (MITM) attack that circumvents the mutual authentication.

References

CVE Name CVE-2017-1110
FreeBSD Advisory SA-17:05.heimdal

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.