FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- heimdal KDC-REP service name validation vulnerability

Affected packages
11.0 <= FreeBSD < 11.0_11
10.3 <= FreeBSD < 10.3_20


VuXML ID 420243e9-a840-11e7-b5af-a4badb2f4699
Discovery 2017-07-12
Entry 2017-10-03

Problem Description:

There is a programming error in the Heimdal implementation that used an unauthenticated, plain-text version of the KDC-REP service name found in a ticket.


An attacker who has control of the network between a client and the service it talks to will be able to impersonate the service, allowing a successful man-in-the-middle (MITM) attack that circumvents the mutual authentication.


CVE Name CVE-2017-1110
FreeBSD Advisory SA-17:05.heimdal