Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-3295
HistoryDec 29, 2009 - 8:41 p.m.

CVE-2009-3295

2009-12-2920:41:00
NVD-CWE-Other
[email protected]
web.nvd.nist.gov
29
cve-2009-3295
nvd
denial of service
remote attackers
cross-realm referral
mit kerberos 5
krb5
daemon crash
null pointer dereference

6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.895 High

EPSS

Percentile

98.7%

JSON

The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.

CPENameOperatorVersion
mit:kerberos_5mit kerberos 5eq1.7

Related

securityvulns 2
openvas 19
checkpoint_advisories 1
prion 1
nessus 7
fedora 5
ubuntucve 1
ubuntu 1
debiancve 1
seebug 1
suse 1
gentoo 1
securityvulns
securityvulns
MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing
2009-12-29 00:00:00
MIT Kerberos 5 DoS
2009-12-29 00:00:00
openvas
openvas
Fedora Update for krb5 FEDORA-2009-13539
2010-01-15 00:00:00
MIT Kerberos5 KDC Cross Realm Referral DoS Vulnerability
2010-01-22 00:00:00
Ubuntu: Security Advisory (USN-879-1)
2010-01-15 00:00:00
checkpoint_advisories
checkpoint_advisories
MIT Kerberos KDC Cross Realm Referral Denial of Service (CVE-2009-3295)
2011-05-17 00:00:00
prion
prion
Null pointer dereference
2009-12-29 20:41:00
nessus
nessus
Fedora 12 : krb5-1.7-15.fc12 (2009-13539)
2010-02-25 00:00:00
Ubuntu 9.10 : krb5 vulnerability (USN-879-1)
2013-03-09 00:00:00
openSUSE Security Update : krb5 (krb5-1795)
2010-01-20 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: krb5-1.7-15.fc12
2010-01-05 22:54:25
[SECURITY] Fedora 12 Update: krb5-1.7.1-2.fc12
2010-02-18 22:26:48
[SECURITY] Fedora 12 Update: krb5-1.7.1-6.fc12
2010-03-27 00:55:38
ubuntucve
ubuntucve
CVE-2009-3295
2009-12-29 00:00:00
ubuntu
ubuntu
Kerberos vulnerability
2010-01-06 00:00:00
debiancve
debiancve
CVE-2009-3295
2009-12-29 20:41:00
seebug
seebug
MIT Kerberos KDC跨域Referralη©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-12-29 00:00:00
suse
suse
remote code execution in krb5
2010-01-19 17:05:33
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00

6 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.895 High

EPSS

Percentile

98.7%

JSON
Related for CVE-2009-3295
securityvulns2openvas19checkpoint_advisories1prion1nessus7fedora5ubuntucve1ubuntu1debiancve1seebug1suse1gentoo1