CVE-2018-16860

HIGH Year: 2018
CVSS v3 Score
7.5
High
CVSS v2 Score
6.0
Medium
Weakness Type
CWE-358
View all →

Vulnerability Description

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name (principal) in the request with any desired user name (principal) that exists in the KDC effectively obtaining a ticket for that principal.

Related Vulnerabilities

CVE-2016-3017

HIGH
CVSS:7.5(High)

IBM Security Access Manager for Web could allow a remote attacker to obtain sensitive information due to security misconfigurations.

CWE-3582016

CVE-2016-8614

HIGH
CVSS:7.5(High)

A flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary to create an OpenPGP key which matches the short key ID and in...

CWE-3582016

CVE-2017-15107

HIGH
CVSS:7.5(High)

A vulnerability was found in the implementation of DNSSEC in Dnsmasq up to and including 2.78. Wildcard synthesized NSEC records could be improperly interpreted to prove the non-existence of hostnames...

CWE-3582017

CVE-2017-15662

HIGH
CVSS:7.5(High)

In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9123.

CWE-3582017

CVE-2017-15663

HIGH
CVSS:7.5(High)

In Flexense Disk Pulse Enterprise v10.1.18, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9120.

CWE-3582017

CVE-2017-15664

HIGH
CVSS:7.5(High)

In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9121.

CWE-3582017