Kerberos Ticket Cache Sniffing Vulnerability in SSH 1.2.27

Kerberos Ticket Cache Sniffing Vulnerability in SSH 1.2.27

CVE-2000-0575 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

SSH 1.2.27 with Kerberos authentication support stores Kerberos tickets in a file which is created in the current directory of the user who is logging in, which could allow remote attackers to sniff the ticket cache if the home directory is installed on NFS.

Learn more about our User Device Pen Test.