Lucene search

K
cve[email protected]CVE-1999-1321
HistoryNov 05, 1998 - 5:00 a.m.

CVE-1999-1321

1998-11-0505:00:00
NVD-CWE-Other
web.nvd.nist.gov
25
buffer overflow
ssh 1.2.26 client
dos
arbitrary command execution
dns hostname
nvd

8.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.1%

Buffer overflow in ssh 1.2.26 client with Kerberos V enabled could allow remote attackers to cause a denial of service or execute arbitrary commands via a long DNS hostname that is not properly handled during TGT ticket passing.

CPENameOperatorVersion
mit:kerberosmit kerberoseqv

8.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.1%