CVE-2020-17049 is not only bypass acount is sensitive.
You *CAN* obtain tickets with "Kerberos only delegation", not only with "protocol transition"
Pre-requiste are still important, but attack surface is a little bit bigger :)
Sorry for bad message @jakekarnes42
4:18 PM · Dec 10, 2020
2
51
165



