CVE-2010-0035

2010-02-10T18:30:00
ID CVE-2010-0035
Type cve
Reporter cve@mitre.org
Modified 2019-04-30T14:27:00

Description

The Key Distribution Center (KDC) in Kerberos in Microsoft Windows 2000 SP4, Server 2003 SP2, and Server 2008 Gold and SP2, when a trust relationship with a non-Windows Kerberos realm exists, allows remote authenticated users to cause a denial of service (NULL pointer dereference and domain controller outage) via a crafted Ticket Granting Ticket (TGT) renewal request, aka "Kerberos Null Pointer Dereference Vulnerability." Per: http://www.microsoft.com/technet/security/Bulletin/MS10-014.mspx

"This vulnerability only affects domain controllers. Servers that do not perform the role of domain controllers are not affected."