Security bypass vulnerability in krb5 due improper validation of client request
|ID: oval:org.secpod.oval:def:25165||Date: (C)2015-06-23 (M)2017-10-12|
|Class: VULNERABILITY||Family: unix|
The host is installed with krb5 package on Red Hat Enterprise Linux 7 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle a crafted client request. Successful exploitation could allow attackers to bypass an intended preauthentication requirement.
|Red Hat Enterprise Linux 7|