The transit path validation code in Heimdal before 7.3 might allow attackers to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-08-28T19:00:00

Updated: 2024-08-05T15:33:20.475Z

Reserved: 2017-03-09T00:00:00

Link: CVE-2017-6594

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-08-28T19:29:01.400

Modified: 2024-11-21T03:30:04.873

Link: CVE-2017-6594

cve-icon Redhat

No data.