Lucene search

CVE-2014-5353

🗓️ 16 Dec 2014 23:00:59Reported by mitreType

MIT Kerberos 5 (krb5) before 1.13.1 allows remote authenticated users to cause a denial of service via LDAP

Reporter	Title	Published	Views	Family All 78
Tenable Nessus	Mandriva Linux Security Advisory : krb5 (MDVSA-2015:009)	9 Jan 201500:00	–	nessus
Tenable Nessus	Fedora 22 : krb5-1.13.1-2.fc22 (2015-5949)	23 Apr 201500:00	–	nessus
Tenable Nessus	FreeBSD : krb5 -- Vulnerabilities in kadmind, libgssrpc, gss_process_context_token VU#540092 (3a888a1e-b321-11e4-83b2-206a8a720317)	13 Feb 201500:00	–	nessus
Tenable Nessus	Fedora 21 : krb5-1.12.2-17.fc21 (2015-7878)	22 Jun 201500:00	–	nessus
Tenable Nessus	openSUSE Security Update : krb5 (openSUSE-2015-246)	20 Mar 201500:00	–	nessus
Tenable Nessus	SUSE SLED11 / SLES11 Security Update : krb5 (SUSE-SU-2015:1282-1)	24 Jul 201500:00	–	nessus
Tenable Nessus	OracleVM 3.3 / 3.4 : krb5 (OVMSA-2016-0039)	24 Mar 201600:00	–	nessus
Tenable Nessus	SUSE SLES12 Security Update : krb5 (SUSE-SU-2015:1276-1)	22 Jul 201500:00	–	nessus
Tenable Nessus	Oracle Linux 6 : krb5 (ELSA-2015-0794)	10 Apr 201500:00	–	nessus
Tenable Nessus	RHEL 6 : krb5 (RHSA-2015:0794)	9 Apr 201500:00	–	nessus

Nvd

Node

mit kerberos_5Range<1.13.1

Node

redhat enterprise_linux_desktopMatch6.0

redhat enterprise_linux_eusMatch6.6

redhat enterprise_linux_eusMatch7.3

redhat enterprise_linux_eusMatch7.4

redhat enterprise_linux_eusMatch7.5

redhat enterprise_linux_eusMatch7.6

redhat enterprise_linux_eusMatch7.7

redhat enterprise_linux_serverMatch6.0

redhat enterprise_linux_serverMatch7.0

redhat enterprise_linux_server_ausMatch6.6

redhat enterprise_linux_server_ausMatch7.3

redhat enterprise_linux_server_ausMatch7.4

redhat enterprise_linux_server_ausMatch7.6

redhat enterprise_linux_server_ausMatch7.7

redhat enterprise_linux_server_tusMatch6.6

redhat enterprise_linux_server_tusMatch7.3

redhat enterprise_linux_server_tusMatch7.6

redhat enterprise_linux_server_tusMatch7.7

redhat enterprise_linux_workstationMatch6.0

Node

fedoraproject fedoraMatch22

Node

debian debian_linuxMatch7.0

Node

canonical ubuntu_linuxMatch10.04-

canonical ubuntu_linuxMatch12.04-

canonical ubuntu_linuxMatch14.04esm

canonical ubuntu_linuxMatch14.10

Node

oracle solarisMatch10

oracle solarisMatch11.2

Node

opensuse opensuseMatch13.1

opensuse opensuseMatch13.2

Source	Link
rhn	www.rhn.redhat.com/errata/RHSA-2015-0794.html
securityfocus	www.securityfocus.com/bid/71679
rhn	www.rhn.redhat.com/errata/RHSA-2015-0439.html
github	www.github.com/krb5/krb5/commit/d1f707024f1d0af6e54a18885322d70fa15ec4d3
ubuntu	www.ubuntu.com/usn/USN-2498-1
bugs	www.bugs.debian.org/cgi-bin/bugreport.cgi
advisories	www.advisories.mageia.org/MGASA-2014-0536.html
oracle	www.oracle.com/technetwork/topics/security/bulletinapr2015-2511959.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2015-April/155828.html
securitytracker	www.securitytracker.com/id/1031376

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Dec 2014 23:59Current

6.4Medium risk

Vulners AI Score6.4

CVSS23.5

EPSS0.005

CWE-476