Lucene search
HistoryFeb 19, 2003 - 5:00 a.m.
CVE-2003-0060
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.088 Low
EPSS
Percentile
94.6%
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names.
Affected configurations
Node
mitkerberos_5Match1.2.1
ORmitkerberos_5Match1.2.2
ORmitkerberos_5Match1.2.3
ORmitkerberos_5Match1.2.4
Related
cve
cve
CVE-2003-0060
2003-02-19 05:00:00
cert
cert
MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 00:00:00
cvelist
cvelist
CVE-2003-0060
2003-02-01 05:00:00
debiancve
debiancve
CVE-2003-0060
2003-02-19 05:00:00
nessus
nessus
RHEL 2.1 : krb5 (RHSA-2003:052)
2004-07-06 00:00:00
Kerberos 5 < 1.3.5 Multiple Vulnerabilities
2003-04-03 00:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.8 High
AI Score
Confidence
Low
0.088 Low
EPSS
Percentile
94.6%
Related for NVD:CVE-2003-0060