Lucene search

[email protected]CVE-2001-1323

HistoryMay 16, 2001 - 4:00 a.m.

CVE-2001-1323

2001-05-1604:00:00

CWE-120

[email protected]

web.nvd.nist.gov

cve-2001-1323

mit kerberos 5

krb5

buffer overflow

denial of service

code execution

nvd

8.8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.9%

JSON

Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob output from the ftpglob function.

CPENameOperatorVersion
mit:kerberos_5mit kerberos 5lt1.2.2

CPE	Name	Operator	Version
mit:kerberos_5	mit kerberos 5	lt	1.2.2

References

download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-022-01

marc.info/?l=bugtraq&m=98826223517788&w=2

web.mit.edu/kerberos/www/advisories/ftpbuf.txt

www.redhat.com/support/errata/RHSA-2001-060.html

Social References

8.8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.9%

JSON

Related for CVE-2001-1323

cvelist1