Security Advisory

CVE-2001-1444

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2005-04-21 04:00:00

Last updated 2024-08-08 04:58:11

Assigner mitre

State PUBLISHED

Description

The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack.

← Browse all CVEs View on cve.org ↗