CVE-2004-1189
7.2 High
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.1%
The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy’s history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mit:kerberos_5 | mit kerberos 5 | le | 1.3.5 |
References
distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000917
lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
marc.info/?l=bugtraq&m=110358420909358&w=2
marc.info/?l=bugtraq&m=110548298407590&w=2
web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-004-pwhist.txt
www.mandriva.com/security/advisories?name=MDKSA-2004:156
www.redhat.com/support/errata/RHSA-2005-012.html
www.redhat.com/support/errata/RHSA-2005-045.html
www.trustix.org/errata/2004/0069
exchange.xforce.ibmcloud.com/vulnerabilities/18621
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11911
Social References
More
Related
7.2 High
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.1%