What is the severity of CVE-2010-1323?

CVE-2010-1323 has a medium severity rating due to its potential to allow remote attackers to forge messages and modify user-visible prompt text.

How do I fix CVE-2010-1323?

To fix CVE-2010-1323, upgrade to a version of MIT Kerberos 5 that is not affected, such as 1.8.4 or later.

What versions of MIT Kerberos 5 are affected by CVE-2010-1323?

Versions 1.3.x through 1.8.3 of MIT Kerberos 5 are affected by CVE-2010-1323.

What types of attacks can be executed due to CVE-2010-1323?

CVE-2010-1323 can allow remote attackers to forge KRB-SAFE messages and alter responses to the Key Distribution Center.

Is there a workaround for CVE-2010-1323 if I can't upgrade?

There are no known workarounds for CVE-2010-1323; upgrading to a patched version is recommended.

Vulnerability/
CVE-2010-1323

low

3.7

CWE

310

2/12/2010

7/8/2024

CVE-2010-1323

First published: Thu Dec 02 2010(Updated: )

MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message via certain checksums that (1) are unkeyed or (2) use RC4 keys.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
MIT Kerberos 5	=5-1.5.4
MIT Kerberos 5	=1.3
MIT Kerberos 5	=1.3-alpha1
MIT Kerberos 5	=1.3.1
MIT Kerberos 5	=1.3.2
MIT Kerberos 5	=1.3.3
MIT Kerberos 5	=1.3.4
MIT Kerberos 5	=1.3.5
MIT Kerberos 5	=1.3.6
MIT Kerberos 5	=1.4
MIT Kerberos 5	=1.4.1
MIT Kerberos 5	=1.4.2
MIT Kerberos 5	=1.4.3
MIT Kerberos 5	=1.4.4
MIT Kerberos 5	=1.5
MIT Kerberos 5	=1.5.1
MIT Kerberos 5	=1.5.2
MIT Kerberos 5	=1.5.3
MIT Kerberos 5	=1.6
MIT Kerberos 5	=1.6.1
MIT Kerberos 5	=1.6.2
MIT Kerberos 5	=1.7
MIT Kerberos 5	=1.7.1
MIT Kerberos 5	=1.8
MIT Kerberos 5	=1.8.1
MIT Kerberos 5	=1.8.2
MIT Kerberos 5	=1.8.3

Remedy

http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2010-1323?
CVE-2010-1323 has a medium severity rating due to its potential to allow remote attackers to forge messages and modify user-visible prompt text.
How do I fix CVE-2010-1323?
To fix CVE-2010-1323, upgrade to a version of MIT Kerberos 5 that is not affected, such as 1.8.4 or later.
What versions of MIT Kerberos 5 are affected by CVE-2010-1323?
Versions 1.3.x through 1.8.3 of MIT Kerberos 5 are affected by CVE-2010-1323.
What types of attacks can be executed due to CVE-2010-1323?
CVE-2010-1323 can allow remote attackers to forge KRB-SAFE messages and alter responses to the Key Distribution Center.
Is there a workaround for CVE-2010-1323 if I can't upgrade?
There are no known workarounds for CVE-2010-1323; upgrading to a patched version is recommended.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/last-modified-date
agent/weakness
agent/first-publish-date
agent/description
agent/event
agent/remedy
agent/author
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
agent/softwarecombine
agent/tags
agent/source
vendor/mit
canonical/mit kerberos 5
version/mit kerberos 5/5-1.5.4
version/mit kerberos 5/1.3
version/mit kerberos 5/1.3-alpha1
version/mit kerberos 5/1.3.1
version/mit kerberos 5/1.3.2
version/mit kerberos 5/1.3.3
version/mit kerberos 5/1.3.4
version/mit kerberos 5/1.3.5
version/mit kerberos 5/1.3.6
version/mit kerberos 5/1.4
version/mit kerberos 5/1.4.1
version/mit kerberos 5/1.4.2
version/mit kerberos 5/1.4.3
version/mit kerberos 5/1.4.4
version/mit kerberos 5/1.5
version/mit kerberos 5/1.5.1
version/mit kerberos 5/1.5.2
version/mit kerberos 5/1.5.3
version/mit kerberos 5/1.6
version/mit kerberos 5/1.6.1
version/mit kerberos 5/1.6.2
version/mit kerberos 5/1.7
version/mit kerberos 5/1.7.1
version/mit kerberos 5/1.8
version/mit kerberos 5/1.8.1
version/mit kerberos 5/1.8.2
version/mit kerberos 5/1.8.3