DescriptionSystem Security Services Daemon (SSSD) before 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting ticket (TGT); and might allow remote attackers to bypass intended access restrictions via vectors involving an arbitrary password in conjunction with a valid TGT.
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database
SUSE Timeline for this CVECVE page created: Fri Jun 28 03:16:31 2013
CVE page last modified: Fri Oct 7 12:45:52 2022