PT-2001-1632 · Mit · Kerberos 4

Published

2001-05-24

·

Updated

2020-01-21

·

CVE-2001-0417

CVSS v2.0

2.1

Low

VectorAV:L/AC:L/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions Kerberos 4 (aka krb4) (affected versions not specified)
Description The issue allows local users to overwrite arbitrary files via a symlink attack on new ticket files.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0417

Affected Products

Kerberos 4