CVE-2024-43639

Name of the Vulnerable Software and Affected Versions Microsoft Windows KDC Proxy (affected versions not specified)

Description The vulnerability allows remote attackers to execute arbitrary code and affect the system. It is related to errors in the implementation of the Kerberos Key Distribution Center (KDC) Proxy Protocol in Windows operating systems. The issue is due to the function KpsSocketRecvDataIoCompletion not checking large values of the Kerberos response length, leading to a 32-bit overflow and allowing attackers to execute malicious code without authentication. The vulnerability can be exploited by sending a forged Kerberos response, forcing the proxy to connect to a fake domain controller.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.