Cray Inc. Information for VU#442569
MIT Kerberos vulnerable to ticket splicing when using Kerberos4 triple DES service tickets
- Vendor Information Help Date Notified: 05 Mar 2003
- Statement Date:
- Date Updated: 21 Mar 2003
Status
Unknown. If you are the vendor named above, please contact us to update your status.
Vendor Statement
Cray, Inc. may be vulnerable on their UNICOS and UNICOS/mk systems only. UNICOS/mp is not affected. SPR 725005 has been opened to investigate.
Vendor Information
The vendor has not provided us with any further information regarding this vulnerability.
Vendor References
None
Addendum
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.