Kerberos.NET icon indicating copy to clipboard operation
Kerberos.NET copied to clipboard

Published 20 hours ago verified publisher icon dotnet

Missing PacType

Open dev-2null opened this issue 3 years ago • 0 comments

Some PAC types are missing (Ticket checksum, PAC Attributes and PAC Requestor), see https://learn.microsoft.com/en-us/openspecs/windows_protocols/ms-pac/3341cfa2-6ef5-42e0-b7bc-4544884bf399

Some of the PAC structures are important in terms of security. For example, the KDC can use the ticket checksum to verify if the ticket is modified (S4U2Self).

Relevent CVEs: CVE-2020-17049, CVE-2021-42287

dev-2null avatar Sep 29 '22 06:09 dev-2null