Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2009-0845
HistoryMar 27, 2009 - 4:00 p.m.

CVE-2009-0845

2009-03-2716:00:00
mitre
www.cve.org
7

AI Score

6.8

Confidence

High

EPSS

0.052

Percentile

93.1%

JSON

The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via invalid ContextFlags data in the reqFlags field in a negTokenInit token.

References

Related

securityvulns 6
ubuntucve 1
seebug 1
prion 1
cve 1
openvas 53
nessus 27
debiancve 1
veracode 1
nvd 1
vmware 4
centos 1
redhat 1
debian 1
suse 1
fedora 2
osv 1
oraclelinux 1
gentoo 1
ubuntu 1
securityvulns
securityvulns
MIT Kerberos 5 DoS
2009-04-01 00:00:00
[ MDVSA-2009:082 ] krb5
2009-04-01 00:00:00
MITKRB5-SA-2010-002 denial of service in SPNEGO [CVE-2010-0628 VU#839413]
2010-03-25 00:00:00
ubuntucve
ubuntucve
CVE-2009-0845
2009-03-27 00:00:00
seebug
seebug
MIT Kerberos NegTokenInitδ»€η‰Œε€„η†θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-03-28 00:00:00
prion
prion
Null pointer dereference
2009-03-27 16:30:00
cve
cve
CVE-2009-0845
2009-03-27 16:30:02
openvas
openvas
Mandrake Security Advisory MDVSA-2009:082 (krb5)
2009-04-06 00:00:00
Mandrake Security Advisory MDVSA-2009:082 (krb5)
2009-04-06 00:00:00
CentOS Update for krb5-devel CESA-2009:0408 centos5 i386
2011-08-09 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : krb5 (MDVSA-2009:082)
2009-04-23 00:00:00
VMware ESX Multiple Vulnerabilities (VMSA-2009-0008) (remote check)
2016-03-03 00:00:00
VMSA-2009-0008 : ESX Service Console update for krb5
2009-07-27 00:00:00
debiancve
debiancve
CVE-2009-0845
2009-03-27 16:30:02
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:37:21
nvd
nvd
CVE-2009-0845
2009-03-27 16:30:02
vmware
vmware
ESX Service Console update for krb5
2009-06-30 00:00:00
ESX Service Console update for krb5
2009-06-30 00:00:00
VMware ESXi and ESX third party updates for Service Console and Likewise components
2010-11-15 00:00:00
centos
centos
krb5 security update
2009-04-08 12:00:24
redhat
redhat
(RHSA-2009:0408) Important: krb5 security update
2009-04-07 00:00:00
debian
debian
[SECURITY] [DSA 1766-1] New krb5 packages fix several vulnerabilities
2009-04-09 01:33:24
suse
suse
remote code execution in krb5
2009-04-08 16:25:40
fedora
fedora
[SECURITY] Fedora 10 Update: krb5-1.6.3-18.fc10
2009-04-07 23:24:17
[SECURITY] Fedora 9 Update: krb5-1.6.3-16.fc9
2009-04-07 23:23:58
osv
osv
krb5 - several vulnerabilities
2009-04-09 00:00:00
oraclelinux
oraclelinux
krb5 security update
2009-04-07 00:00:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2009-04-08 00:00:00
ubuntu
ubuntu
Kerberos vulnerabilities
2009-04-07 00:00:00

AI Score

6.8

Confidence

High

EPSS

0.052

Percentile

93.1%

JSON
Related for CVELIST:CVE-2009-0845
securityvulns6ubuntucve1seebug1prion1cve1openvas53nessus27debiancve1veracode1nvd1vmware4centos1redhat1debian1suse1fedora2osv1oraclelinux1gentoo1ubuntu1