CVE-2008-0062

2008-03-19T10:44:00
ID CVE-2008-0062
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:57:00

Description

KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.