Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbJoel JohnsonEDB-ID:33855
HistoryApr 20, 2010 - 12:00 a.m.

MIT Kerberos 5 - 'src/kdc/do_tgs_req.c' Ticket Renewal Double-Free Memory Corruption

2010-04-2000:00:00
Joel Johnson
www.exploit-db.com
19

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/39599/info

MIT Kerberos is prone to a remote memory-corruption vulnerability.

An authenticated attacker can exploit this issue by sending specially crafted ticket-renewal requests to a vulnerable computer.

Successfully exploiting this issue can allow the attacker to execute arbitrary code with superuser privileges, completely compromising the affected computer. Failed exploit attempts will result in a denial-of-service condition. 

The following proof-of-concept command is available:

% kinit -R

We currently are unaware of any exploits that result in code-execution.

Related

securityvulns 2
cve 1
checkpoint_advisories 1
prion 1
cvelist 1
freebsd 1
nessus 8
debiancve 1
fedora 3
ubuntucve 1
nvd 1
openvas 13
ubuntu 2
gentoo 1
osv 1
securityvulns
securityvulns
MIT Kerberos 5 double free()
2010-04-23 00:00:00
MITKRB5-SA-2010-004 [CVE-2010-1320] double free in KDC
2010-04-23 00:00:00
cve
cve
CVE-2010-1320
2010-04-22 14:30:01
checkpoint_advisories
checkpoint_advisories
MIT Kerberos KDC Ticket Validation Double Free Memory Corruption (CVE-2010-1320)
2010-08-08 00:00:00
prion
prion
Double free
2010-04-22 14:30:00
cvelist
cvelist
CVE-2010-1320
2010-04-22 14:00:00
freebsd
freebsd
krb5 -- KDC double free vulnerability
2010-04-20 00:00:00
nessus
nessus
openSUSE Security Update : krb5 (openSUSE-SU-2010:0147-1)
2010-04-23 00:00:00
FreeBSD : krb5 -- KDC double free vulnerability (86b8b655-4d1a-11df-83fb-0015587e2cc1)
2010-04-22 00:00:00
Fedora 13 : krb5-1.7.1-8.fc13 (2010-7102)
2010-07-01 00:00:00
debiancve
debiancve
CVE-2010-1320
2010-04-22 14:30:01
fedora
fedora
[SECURITY] Fedora 13 Update: krb5-1.7.1-8.fc13
2010-04-21 21:54:06
[SECURITY] Fedora 12 Update: krb5-1.7.1-7.fc12
2010-04-21 21:58:12
[SECURITY] Fedora 12 Update: krb5-1.7.1-9.fc12
2010-05-19 19:19:21
ubuntucve
ubuntucve
CVE-2010-1320
2010-04-22 00:00:00
nvd
nvd
CVE-2010-1320
2010-04-22 14:30:01
openvas
openvas
FreeBSD Ports: krb5
2010-05-04 00:00:00
FreeBSD Ports: krb5
2010-05-04 00:00:00
Ubuntu: Security Advisory (USN-940-2)
2010-07-23 00:00:00
ubuntu
ubuntu
Kerberos vulnerability
2010-07-21 00:00:00
Kerberos vulnerabilities
2010-05-19 00:00:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00
osv
osv
krb5-1.15-1.1 on GA media
2024-06-15 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:33855
securityvulns2cve1checkpoint_advisories1prion1cvelist1freebsd1nessus8debiancve1fedora3ubuntucve1nvd1openvas13ubuntu2gentoo1osv1