The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3206
원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3206
댓글 0
| 번호 | 제목 | 글쓴이 | 날짜 | 조회 수 |
|---|---|---|---|---|
| 407 | CVE-2017-2740 | 관리자 | 2018.01.25 | 150 |
| 406 | CVE-2017-5208 (icoutils) | 관리자 | 2017.08.27 | 151 |
| » | CVE-2015-3206 | 관리자 | 2017.08.27 | 151 |
| 404 | CVE-2017-14119 | 관리자 | 2017.09.04 | 151 |
| 403 | CVE-2017-0081 | 관리자 | 2017.03.18 | 152 |
| 402 | CVE-2017-0125 | 관리자 | 2017.03.18 | 152 |
| 401 | CVE-2017-9508 | 관리자 | 2017.08.27 | 152 |
| 400 | CVE-2017-2915 | 관리자 | 2017.11.09 | 152 |
| 399 | CVE-2017-6552 | 관리자 | 2017.03.10 | 153 |
| 398 | CVE-2017-6574 | 관리자 | 2017.03.10 | 153 |
| 397 | CVE-2017-0110 | 관리자 | 2017.03.18 | 153 |
| 396 | CVE-2017-12785 | 관리자 | 2017.08.27 | 153 |
| 395 | CVE-2014-7857 | 관리자 | 2017.08.27 | 153 |
| 394 | CVE-2017-0154 | 관리자 | 2017.03.18 | 154 |
| 393 | CVE-2017-16635 | 관리자 | 2017.11.09 | 154 |