RSS   Vulnerabilities for 'Pykerberos'   RSS

2017-08-25
 
CVE-2015-3206

CWE-287
 

 
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.

 

 >>> Vendor: Python 20 Products
Python
Virtualenv
Beaker
Keyring
Setuptools
RPLY
Pyxdg
Pillow
Requests
PIP
Tgcaptcha2
Urllib3
Python priority library
Hpack
Hyper
Openpyxl
Tablib
Simplejson
Pykerberos
Pypiserver


Copyright 2019, cxsecurity.com

 

Back to Top