Skip to main content

Microsoft Windows Kerberos Multiple Vulnerabilities( 09 February 2011 )

Last Update Date: 11 Feb 2011 Release Date: 9 Feb 2011 5830 Views

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS
  1. Kerberos Unkeyed Checksum Vulnerability

    An elevation of privilege vulnerability exists in implementations of Kerberos. The vulnerability exists because the Microsoft Kerberos implementation supports a weak hashing mechanism, which can allow for certain aspects of a Kerberos service ticket to be forged. A malicious user or attacker who successfully exploited this vulnerability could obtain a token with elevated privileges on the affected system.

  2. Kerberos Spoofing Vulnerability

    A spoofing vulnerability exists in implementations of Kerberos on Windows 7 and Windows Server 2008 R2. The vulnerability exists because it is possible to downgrade Kerberos authentication to use DES instead of the default, stronger encryption standards included in Windows 7 and Windows Server 2008 R2.