CVE-2010-1324

Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 (aka krb5) versions 1.7.x through 1.8.3 MIT Kerberos 5 (aka krb5) versions prior to 1.9.2-r1

Description The issue is related to the improper determination of checksum acceptability, which could allow remote attackers to forge GSS tokens, gain privileges, or have other unspecified impacts. This can be achieved through various means, including an unkeyed checksum, an unkeyed PAC checksum, or a KrbFastArmoredReq checksum based on an RC4 key. Multiple vulnerabilities in the mit-krb5 package may lead to breaches of confidentiality, integrity, and availability of protected information, with potential remote exploitation.

Recommendations For versions 1.7.x through 1.8.3, consider updating to a version later than 1.8.3 to address the issue. For versions prior to 1.9.2-r1, update to version 1.9.2-r1 or later to resolve the vulnerabilities. As a temporary workaround, consider restricting access to sensitive operations that rely on GSS tokens until a patch is available.