{"id":"CVE-2010-0014","details":"System Security Services Daemon (SSSD) before 1.0.1, when the krb5 auth_provider is configured but the KDC is unreachable, allows physically proximate attackers to authenticate, via an arbitrary password, to the screen-locking program on a workstation that has any user's Kerberos ticket-granting ticket (TGT); and might allow remote attackers to bypass intended access restrictions via vectors involving an arbitrary password in conjunction with a valid TGT.","modified":"2026-04-10T03:41:06.939294Z","published":"2010-01-14T18:30:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/38160"},{"type":"FIX","url":"https://fedorahosted.org/sssd/wiki/Releases/Notes-1.0.1"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=553233"},{"type":"WEB","url":"http://www.securityfocus.com/bid/37747"}],"schema_version":"1.7.5"}