Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-266
HistoryMar 24, 2003 - 12:00 a.m.

krb5 - several vulnerabilities

2003-03-2400:00:00
Google
osv.dev
7

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Several vulnerabilities have been discovered in krb5, an
implementation of MIT Kerberos.

  • A cryptographic weakness in version 4 of the Kerberos protocol
    allows an attacker to use a chosen-plaintext attack to impersonate
    any principal in a realm. Additional cryptographic weaknesses in
    the krb4 implementation included in the MIT krb5 distribution
    permit the use of cut-and-paste attacks to fabricate krb4 tickets
    for unauthorized client principals if triple-DES keys are used to
    key krb4 services. These attacks can subvert a site’s entire
    Kerberos authentication infrastructure.

Kerberos version 5 does not contain this cryptographic
vulnerability. Sites are not vulnerable if they have Kerberos v4
completely disabled, including the disabling of any krb5 to krb4
translation services.

  • The MIT Kerberos 5 implementation includes an RPC library derived
    from SUNRPC. The implementation contains length checks, that are
    vulnerable to an integer overflow, which may be exploitable to
    create denials of service or to gain unauthorized access to
    sensitive information.
  • Buffer overrun and underrun problems exist in Kerberos principal
    name handling in unusual cases, such as names with zero components,
    names with one empty component, or host-based service principal
    names with no host name component.

This version of the krb5 package changes the default behavior and
disallows cross-realm authentication for Kerberos version 4. Because
of the fundamental nature of the problem, cross-realm authentication
in Kerberos version 4 cannot be made secure and sites should avoid its
use. A new option (-X) is provided to the krb5kdc and krb524d
commands to re-enable version 4 cross-realm authentication for those
sites that must use this functionality but desire the other security
fixes.

For the stable distribution (woody) this problem has been
fixed in version 1.2.4-5woody4.

The old stable distribution (potato) does not contain krb5 packages.

For the unstable distribution (sid) this problem will be fixed soon.

We recommend that you upgrade your krb5 package.

Related

nessus 13
debian 12
openvas 12
altlinux 1
redhat 1
cve 7
cert 3
debiancve 5
suse 1
securityvulns 3
osv 2
ubuntucve 1
nessus
nessus
Debian DSA-266-1 : krb5 - several vulnerabilities
2004-09-29 00:00:00
Mandrake Linux Security Advisory : krb5 (MDKSA-2003:043-1)
2004-07-31 00:00:00
Debian DSA-273-1 : krb4 - Cryptographic weakness
2004-09-29 00:00:00
debian
debian
[SECURITY] [DSA 266-1] New krb5 packages fix several vulnerabilities
2003-03-24 00:00:00
[SECURITY] [DSA 266-1] New krb5 packages fix several vulnerabilities
2003-03-24 12:06:16
[SECURITY] [DSA 272-1] New dietlibc packages fix arbitrary code execution
2003-03-28 00:00:00
openvas
openvas
Debian Security Advisory DSA 266-1 (krb5)
2008-01-17 00:00:00
Debian Security Advisory DSA 266-1 (krb5)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-273)
2008-01-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.2.7-alt2
2003-03-24 00:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00
cve
cve
CVE-2003-0139
2003-03-24 05:00:00
CVE-2003-0082
2003-04-02 05:00:00
CVE-2003-0072
2003-04-02 05:00:00
cert
cert
MIT Kerberos vulnerable to ticket splicing when using Kerberos4 triple DES service tickets
2003-03-20 00:00:00
Integer overflow in Sun RPC XDR library routines
2003-03-19 00:00:00
Cryptographic weakness in Kerberos Version 4 protocol
2003-03-20 00:00:00
debiancve
debiancve
CVE-2003-0082
2003-04-02 05:00:00
CVE-2003-0139
2003-03-24 05:00:00
CVE-2003-0072
2003-04-02 05:00:00
suse
suse
remote system compromise in glibc
2003-05-27 15:57:34
securityvulns
securityvulns
[RHSA-2003:089-00] Updated glibc packages fix vulnerabilities in RPC XDR decoder
2003-03-20 00:00:00
MITKRB5-SA-2003-003: faulty length checks in xdrmem_getbytes
2003-03-20 00:00:00
CERT Advisory CA-2003-10 Integer overflow in Sun RPC XDR library routines
2003-03-20 00:00:00
osv
osv
glibc - integer overflow
2003-04-09 00:00:00
dietlibc - integer overflow
2003-03-28 00:00:00
ubuntucve
ubuntucve
CVE-2003-0072
2003-04-02 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-266
nessus13debian12openvas12altlinux1redhat1cve7cert3debiancve5suse1securityvulns3osv2ubuntucve1