CVE-2003-0138
EPSS 5.6%krb4 - Cryptographic weakness
發布日:2003/3/24修改日:2026/4/28
描述
Version 4 of the Kerberos protocol (krb4), as used in Heimdal and other packages, allows an attacker to impersonate any principal in a realm via a chosen-plaintext attack.
受影響套件(4)
- Debian/heimdalfrom 0, < 0.5.2-1
- Debian/heimdalfrom 0, < 0.4e-7.woody.8
- Debian/krb4from 0, < 1.1-8-2.3
- Debian/krb5from 0, < 1.2.7-3