CVE-2015-3206
published 2017-08-25CVE-2015-3206: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of…
PriorityP336high8.1CVSS 3.0
AVNACHPRNUINSUCHIHAH
EPSS
2.30%
81.2th percentile
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | pykerberos | < pykerberos 1.1.5-1 (bookworm) | pykerberos 1.1.5-1 (bookworm) |
| mit | kerberos | 0 – 1.2.5 | — |
CVSS provenance
nvdv3.08.1HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.1HIGH
vendor_debian8.1HIGH
vendor_redhat8.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
python-kerberos vulnerable to KDC spoofing attacks
osv·2022-05-14
CVE-2015-3206 [CRITICAL] python-kerberos vulnerable to KDC spoofing attacks
python-kerberos vulnerable to KDC spoofing attacks
The `checkPassword` function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
GHSA
python-kerberos vulnerable to KDC spoofing attacks
ghsa·2022-05-14
CVE-2015-3206 [CRITICAL] CWE-287 python-kerberos vulnerable to KDC spoofing attacks
python-kerberos vulnerable to KDC spoofing attacks
The `checkPassword` function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
OSV
CVE-2015-3206: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a
osv·2017-08-25·CVSS 8.1
CVE-2015-3206 [HIGH] CVE-2015-3206: The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
Red Hat
python-kerberos: checkPassword() does not verify KDC authenticity
vendor_redhat·2015-05-21·CVSS 8.1
CVE-2015-3206 [HIGH] CWE-304 python-kerberos: checkPassword() does not verify KDC authenticity
python-kerberos: checkPassword() does not verify KDC authenticity
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
Statement: This issue affects the versions of python-kerberos as shipped with Red Hat Enterprise Linux 5, 6, and 7. Red Hat Product Security has rated this issue as having Moderate security impact. Additionally this issue is difficult to exploit in most common scenarios (due to the need for a valid Kerberos TGT)c For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.
Package: python-kerberos
Debian
CVE-2015-3206: pykerberos - The checkPassword function in python-kerberos does not authenticate the KDC it a...
vendor_debian·2015·CVSS 8.1
CVE-2015-3206 [HIGH] CVE-2015-3206: pykerberos - The checkPassword function in python-kerberos does not authenticate the KDC it a...
The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of service (bad response), or have other unspecified impact by performing a man-in-the-middle attack.
Scope: local
bookworm: resolved (fixed in 1.1.5-1)
bullseye: resolved (fixed in 1.1.5-1)
forky: resolved (fixed in 1.1.5-1)
sid: resolved (fixed in 1.1.5-1)
trixie: resolved (fixed in 1.1.5-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity
bugzilla·2015-05-21·CVSS 8.1
CVE-2015-3206 [HIGH] CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity
The python-kerberos checkPassword() function does not verify that the KDC that it is authenticating with is the one that it intended to communicate with. This could allow a man-in-the-middle attacker to spoof a KDC when an application using python-kerberos attempts to verify a password via the checkPassword() function.
This issue is tracked upstream in https://www.calendarserver.org/ticket/833 , however it was resolved by documenting the shortcomings of the checkPassword() function: https://pypi.python.org/pypi/kerberos .
The pykerberos library (https://pypi.python.org/pypi/pykerberos), a fork of python-kerberos, does include KDC validation support. This change should be backported to python-kerberos to avoi
Bugzilla
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [epel-5]
bugzilla·2015-05-21·CVSS 8.1
CVE-2015-3206 [HIGH] CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [epel-5]
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [epel-5]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
epel-5 tracking bug for python-kerberos:
Bugzilla
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [fedora-all]
bugzilla·2015-05-21·CVSS 8.1
CVE-2015-3206 [HIGH] CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [fedora-all]
CVE-2015-3206 python-kerberos: checkPassword() does not verify KDC authenticity [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple support
http://www.openwall.com/lists/oss-security/2015/05/21/3http://www.securityfocus.com/bid/74760https://bugzilla.redhat.com/show_bug.cgi?id=1223802https://github.com/apple/ccs-pykerberos/issues/31https://pypi.python.org/pypi/kerberoshttp://www.openwall.com/lists/oss-security/2015/05/21/3http://www.securityfocus.com/bid/74760https://bugzilla.redhat.com/show_bug.cgi?id=1223802https://github.com/apple/ccs-pykerberos/issues/31https://pypi.python.org/pypi/kerberos
2017-08-25
Published