Windows Kerberos Authentication Bypass

We implemented and tested a recent attack tecnique, also called « pass-the-ticket », on various real Kerberos implementations. The attack allows a malicious user to physically login on a target host in a Kerberos-based network, under the assumption that he knows a valid user principal and has the ability to manipulate network traffic. Our research shows that all recent versions of the Microsoft Windows operating systems are vulnerable to the attack.

Whitepaper + outil dispos

Origine de l’article :
http://secgroup.ext.dsi.unive.it/kerberos/