Lucene search
HistoryFeb 19, 2003 - 5:00 a.m.
CVE-2003-0060
cve-2003-0060
mit kerberos
kerberos v5
kdc
format string vulnerabilities
denial of service
arbitrary code
nvd
8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.088 Low
EPSS
Percentile
94.5%
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names.
Related
cvelist
cvelist
CVE-2003-0060
2003-02-01 05:00:00
cert
cert
MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 00:00:00
debiancve
debiancve
CVE-2003-0060
2003-02-19 05:00:00
nessus
nessus
RHEL 2.1 : krb5 (RHSA-2003:052)
2004-07-06 00:00:00
Kerberos 5 < 1.3.5 Multiple Vulnerabilities
2003-04-03 00:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00
8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.088 Low
EPSS
Percentile
94.5%
Related for CVE-2003-0060