CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
99.1%
Emmanuel Bouillon discovered that Kerberos did not correctly handle
certain message types. An unauthenticated remote attacker could send
specially crafted traffic to cause the KDC to crash, leading to a denial
of service. (CVE-2010-0283)
Nalin Dahyabhai, Jan iankko Lieskovsky, and Zbysek Mraz discovered
that Kerberos did not correctly handle certain GSS packets. An
unauthenticated remote attacker could send specially crafted traffic
that would cause services using GSS-API to crash, leading to a denial
of service. (CVE-2010-0628)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | libgssapi-krb5-2 | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-admin-server | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-clients | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-ftpd | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-kdc | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-kdc-ldap | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-pkinit | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-rsh-server | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-telnetd | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-user | < 1.7dfsg~beta3-1ubuntu0.5 | UNKNOWN |