Lucene search

MitreCVE-2001-0035

HistoryMay 07, 2001 - 4:00 a.m.

CVE-2001-0035

2001-05-0704:00:00

mitre

web.nvd.nist.gov

cve-2001-0035

kth kerberos iv

buffer overflow

remote attacks

denial of service

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

49.2%

JSON

Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request.

Affected configurations

Nvd

Node

kthkth_kerberosMatch4

VendorProductVersionCPE
kthkth_kerberos4cpe:2.3:a:kth:kth_kerberos:4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
kth	kth_kerberos	4	cpe:2.3:a:kth:kth_kerberos:4:::::::*

References

archives.neohapsis.com/archives/bugtraq/2000-12/0093.html

archives.neohapsis.com/archives/bugtraq/2000-12/0105.html

archives.neohapsis.com/archives/bugtraq/2001-01/0511.html

exchange.xforce.ibmcloud.com/vulnerabilities/5734

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

8.4

Confidence

High

EPSS

0.001

Percentile

49.2%

JSON

Related for CVE-2001-0035