製品・ソフトウェアに関する情報

JVN脆弱性詳細

MIT Kerberos 5 における GSS トークンを偽造される脆弱性

Title	MIT Kerberos 5 における GSS トークンを偽造される脆弱性
Summary	MIT Kerberos 5 は、チェックサムの適合性を適切に判定しないため、GSS トークンを偽造される、権限を取得される、またはその他の詳細不明な影響を受ける脆弱性が存在します。
Possible impacts	第三者により、unkeyed チェックサム、unkeyed PAC チェックサム、または RC4 キーをベースとした KrbFastArmoredReq チェクサムを介して、GSS トークンを偽造される、権限を取得される、またはその他の詳細不明な影響を受ける可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Nov. 30, 2010, midnight
Registration Date	Dec. 22, 2010, 2:32 p.m.
Last Update	July 29, 2015, 5:36 p.m.

CVSS2.0 : 警告
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:P/A:N

Affected System

レッドハット

Red Hat Enterprise Linux Desktop 6

Red Hat Enterprise Linux HPC Node 6

Red Hat Enterprise Linux Server 6

Red Hat Enterprise Linux Workstation 6

ヒューレット・パッカード

HP-UX 11.11

HP-UX 11.23

HP-UX 11.31

オラクル

Oracle Solaris 11 Express

Oracle Virtualization の Oracle Secure Global Desktop 4.63

Oracle Virtualization の Oracle Secure Global Desktop 4.71

Oracle Virtualization の Oracle Secure Global Desktop 5.1

Oracle Virtualization の Oracle Secure Global Desktop 5.2

アップル

Apple Mac OS X v10.5.8

Apple Mac OS X v10.6 から v10.6.6

Apple Mac OS X Server v10.5.8

Apple Mac OS X Server v10.6 から v10.6.6

MIT Kerberos

Kerberos 5 1.7.x

Kerberos 5 1.8.3 およびそれ以前

VMware

VMware ESX 4.1

VMware ESXi 4.1

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2010-1324	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1324
National Vulnerability Database (NVD)
2	CVE-2010-1324	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-1324

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-DesignError	https://www.ipa.go.jp/security/vuln/CWE.html#CWEDesignError

ベンダー情報

No	Name	URL
Apple Security Updates
1	HT4581	http://support.apple.com/kb/HT4581
Apple セキュリティアップデート
2	HT4581	http://support.apple.com/kb/HT4581?viewlocale=ja_JP
HP Security Bulletin
3	HPSBUX02623	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02657328
MIT krb5 Security Advisory
4	MITKRB5-SA-2010-007	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-007.txt
Oracle Critical Patch Update
5	July 2015 Critical Patch Update Released	https://blogs.oracle.com/security/entry/july_2015_critical_patch_update
6	Oracle Critical Patch Update Advisory - July 2015	http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html
7	Text Form of Oracle Critical Patch Update - July 2015 Risk Matrices	http://www.oracle.com/technetwork/topics/security/cpujul2015verbose-2367947.html
Red Hat Security Advisory
8	RHSA-2010:0925	https://rhn.redhat.com/errata/RHSA-2010-0925.html
SECURITY BLOG
9	cve_2010_1324_vulnerability_in	http://blogs.sun.com/security/entry/cve_2010_1324_vulnerability_in
10	Multiple vulnerabilities in kerberos	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_kerberos
VMware Security Advisories
11	VMSA-2011-0007	http://www.vmware.com/security/advisories/VMSA-2011-0007.html

その他

No	Name	URL
JVN
1	JVNVU#636925	http://jvn.jp/cert/JVNVU636925
OPEN SOURCE VULNERABILITY DATABASE (OSVDB)
2	69609	http://osvdb.org/69609
Secunia Advisory
3	SA42396	http://secunia.com/advisories/42396
4	SA42399	http://secunia.com/advisories/42399
5	SA43015	http://secunia.com/advisories/43015
SecurityFocus
6	45116	http://www.securityfocus.com/bid/45116
SecurityTracker
7	1024803	http://www.securitytracker.com/id?1024803
VUPEN Security
8	VUPEN/ADV-2010-3094	http://www.vupen.com/english/advisories/2010/3094
9	VUPEN/ADV-2010-3095	http://www.vupen.com/english/advisories/2010/3095
10	VUPEN/ADV-2011-0187	http://www.vupen.com/english/advisories/2011/0187

Change Log

No	Changed Details	Date of change
0	[2010年12月22日] 掲載 [2011年02月03日] 影響を受けるシステム：ヒューレット・パッカード (HPSBUX02623) の情報を追加ベンダ情報：ヒューレット・パッカード (HPSBUX02623) を追加 [2011年04月01日] 影響を受けるシステム：アップル (HT4581) の情報を追加ベンダ情報：アップル (HT4581) を追加 [2011年05月09日] 影響を受けるシステム：VMware (VMSA-2011-0007) の情報を追加影響を受けるシステム：オラクル (cve_2010_1324_vulnerability_in) の情報を追加ベンダ情報：VMware (VMSA-2011-0007) を追加ベンダ情報：オラクル (cve_2010_1324_vulnerability_in) を追加 [2013年11月01日] ベンダ情報：オラクル (Multiple vulnerabilities in kerberos) を追加 [2015年07月29日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：オラクル (Oracle Critical Patch Update Advisory - July 2015) を追加ベンダ情報：オラクル (Text Form of Oracle Critical Patch Update - July 2015 Risk Matrices) を追加ベンダ情報：オラクル (July 2015 Critical Patch Update Released) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2010-1324

Summary	MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unkeyed PAC checksum, or (3) a KrbFastArmoredReq checksum based on an RC4 key.
Publication Date	Dec. 3, 2010, 1:22 a.m.
Registration Date	Jan. 29, 2021, 10:59 a.m.
Last Update	Nov. 21, 2024, 10:14 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:mit:kerberos_5:1.7:::::::*
cpe:2.3:a:mit:kerberos_5:1.7.1:::::::*
cpe:2.3:a:mit:kerberos_5:1.8:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.1:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.2:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.3:::::::*

Related information, measures and tools

No	URL	タグ
1	http://kb.vmware.com/kb/1035108
2	http://kb.vmware.com/kb/1035108
3	http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
4	http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
5	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051976.html
6	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051976.html
7	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051999.html
8	http://lists.fedoraproject.org/pipermail/package-announce/2010-December/051999.html
9	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html
10	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00000.html
11	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
12	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html
13	http://lists.vmware.com/pipermail/security-announce/2011/000133.html
14	http://lists.vmware.com/pipermail/security-announce/2011/000133.html
15	http://marc.info/?l=bugtraq&m=129562442714657&w=2
16	http://marc.info/?l=bugtraq&m=129562442714657&w=2
17	http://marc.info/?l=bugtraq&m=129562442714657&w=2
18	http://marc.info/?l=bugtraq&m=129562442714657&w=2
19	http://osvdb.org/69609
20	http://osvdb.org/69609
21	http://secunia.com/advisories/42399	Vendor Advisory
22	http://secunia.com/advisories/42399	Vendor Advisory
23	http://secunia.com/advisories/43015
24	http://secunia.com/advisories/43015
25	http://support.apple.com/kb/HT4581
26	http://support.apple.com/kb/HT4581
27	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-007.txt	Vendor Advisory
28	http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-007.txt	Vendor Advisory
29	http://www.mandriva.com/security/advisories?name=MDVSA-2010:246
30	http://www.mandriva.com/security/advisories?name=MDVSA-2010:246
31	http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	Patch Vendor Advisory
32	http://www.oracle.com/technetwork/topics/security/cpujul2015-2367936.html	Patch Vendor Advisory
33	http://www.redhat.com/support/errata/RHSA-2010-0925.html
34	http://www.redhat.com/support/errata/RHSA-2010-0925.html
35	http://www.securityfocus.com/archive/1/514953/100/0/threaded
36	http://www.securityfocus.com/archive/1/514953/100/0/threaded
37	http://www.securityfocus.com/archive/1/517739/100/0/threaded
38	http://www.securityfocus.com/archive/1/517739/100/0/threaded
39	http://www.securityfocus.com/bid/45116
40	http://www.securityfocus.com/bid/45116
41	http://www.securitytracker.com/id?1024803
42	http://www.securitytracker.com/id?1024803
43	http://www.ubuntu.com/usn/USN-1030-1
44	http://www.ubuntu.com/usn/USN-1030-1
45	http://www.vmware.com/security/advisories/VMSA-2011-0007.html
46	http://www.vmware.com/security/advisories/VMSA-2011-0007.html
47	http://www.vupen.com/english/advisories/2010/3094
48	http://www.vupen.com/english/advisories/2010/3094
49	http://www.vupen.com/english/advisories/2010/3095
50	http://www.vupen.com/english/advisories/2010/3095
51	http://www.vupen.com/english/advisories/2010/3118
52	http://www.vupen.com/english/advisories/2010/3118
53	http://www.vupen.com/english/advisories/2011/0187
54	http://www.vupen.com/english/advisories/2011/0187
55	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11936
56	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11936

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:mit:kerberos_5:1.7:::::::*
cpe:2.3:a:mit:kerberos_5:1.7.1:::::::*
cpe:2.3:a:mit:kerberos_5:1.8:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.1:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.2:::::::*
cpe:2.3:a:mit:kerberos_5:1.8.3:::::::*