Displaying 2 results from an estimated 2 matches for "rfc8429".
2022 Dec 15
1
[Announce] Samba 4.17.4, 4.16.8 and 4.15.13 Security Releases are available for Download
...os,
????????????????? and so must also be assumed to be weak.
https://www.samba.org/samba/security/CVE-2022-38023.html
o CVE-2022-45141: Since the Windows Kerberos RC4-HMAC Elevation of Privilege
????????????????? Vulnerability was disclosed by Microsoft on Nov 8 2022
????????????????? and per RFC8429 it is assumed that rc4-hmac is weak,
????????????????? Vulnerable Samba Active Directory DCs will issue rc4-hmac
????????????????? encrypted tickets despite the target server supporting
????????????????? better encryption (eg aes256-cts-hmac-sha1-96).
https://www.samba.org/samba/security/CVE-2...
2022 Dec 15
1
[Announce] Samba 4.17.4, 4.16.8 and 4.15.13 Security Releases are available for Download
...os,
????????????????? and so must also be assumed to be weak.
https://www.samba.org/samba/security/CVE-2022-38023.html
o CVE-2022-45141: Since the Windows Kerberos RC4-HMAC Elevation of Privilege
????????????????? Vulnerability was disclosed by Microsoft on Nov 8 2022
????????????????? and per RFC8429 it is assumed that rc4-hmac is weak,
????????????????? Vulnerable Samba Active Directory DCs will issue rc4-hmac
????????????????? encrypted tickets despite the target server supporting
????????????????? better encryption (eg aes256-cts-hmac-sha1-96).
https://www.samba.org/samba/security/CVE-2...