Vulnerability Details CVE-2001-0034
KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.6%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0093.html
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0105.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5733
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0093.html
- http://archives.neohapsis.com/archives/bugtraq/2000-12/0105.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5733
Products affected by CVE-2001-0034
-
cpe:2.3:a:kth:kth_kerberos:*