Kerberos 4 Realm Principle Impersonation

High Nessus Plugin ID 11511


The remote host is using an authentication protocol with cryptographic weaknesses.


The remote host is running Kerberos IV.

It has been demonstrated that the Kerberos IV protocol has inherent design flaws that make it insecure to use.


Use Kerberos 5 instead. If you run Kerberos 5 with Kerberos IV backward compatibility, make sure you upgrade to version 1.3.

See Also

Plugin Details

Severity: High

ID: 11511

File Name: kerberos4_crypto_weaknesses.nasl

Version: $Revision: 1.18 $

Type: remote

Family: Misc.

Published: 2003/04/03

Modified: 2013/02/15

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2003/03/17

Reference Information

CVE: CVE-2003-0138

BID: 7113

OSVDB: 4869