377 matches found
CVE-2021-37750
The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...
Null pointer dereference
The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...
MIT Kerberos 代码问题漏洞
MIT Kerberos is a Massachusetts Institute of Technology MIT software for authentication in network clusters.Kerberos also serves as a network authentication protocol designed to provide strong authentication services to client/server applications through a key system. A security vulnerability...
CVE-2021-37750
CVE-2021-37750 is a vulnerability in MIT Kerberos 5 (krb5) where the Key Distribution Center (KDC) can suffer a NULL pointer dereference in kdc/do_tgs_req.c via a FAST inner body that lacks a server field. Affected releases include krb5 before 1.18.5 and 1.19.x before 1.19.3. The issue can cause ...
CVE-2021-37750
The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...
CVE-2021-37750
The Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.5 and 1.19.x before 1.19.3 has a NULL pointer dereference in kdc/dotgsreq.c via a FAST inner body that lacks a server field...
The vulnerability of the Key Distribution Center (KDC) component of the Kerberos authentication protocol allows a perpetrator to cause a service failure.
The vulnerability of the Key Distribution Center KDC component of the Kerberos authentication protocol is related to the use of the NULL pointer. Exploiting this vulnerability allows a malicious actor to cause a service failure...
Vulnerability fixed in MIT Kerberos
A vulnerability has been fixed in krb5, part of MIT's Kerberos. A malicious party could potentially exploit the vulnerability to cause a denial-of-service on the KDC process through a specially prepared request. -= Debian =- Debian has made updates to krb5 available for Debian 10.0 Buster to fix...
Debian: Security Advisory (DSA-4944-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-36222
ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...
UBUNTU-CVE-2021-36222
ecverify in kdc/kdcpreauthec.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 before 1.18.4 and 1.19.x before 1.19.2 allows remote attackers to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly managed in a certain situation...
Microsoft Windows Server Information Disclosure Vulnerability (CNVD-2021-54418)
Windows Server is the brand name of a series of server operating systems released by Microsoft, including all Windows operating systems released under the brand name "Windows Server". An information disclosure vulnerability exists in the "Key Distribution Center" in Microsoft Windows Server. No...
CVE-2021-33764
Windows Key Distribution Center Information Disclosure Vulnerability...
CVE-2021-33764
Windows Key Distribution Center Information Disclosure Vulnerability...
Information disclosure
Windows Key Distribution Center Information Disclosure Vulnerability...
CVE-2021-33764
CVE-2021-33764 is a Windows Kerberos KDC information-disclosure issue affecting domain controllers. Public details describe a RFC 4556 (section 3.2.1) noncompliance that can impact PIV/smart-card scenarios. Microsoft’s out-of-band updates note a temporary mitigation using a registry key and advis...
KLA12221 Multiple vulnerabillities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of...
Microsoft Windows Key Distribution Center 信息泄露漏洞
Windows Server is the brand name of a series of server operating systems released by Microsoft, including all Windows operating systems released under the brand name "Windows Server". An information disclosure vulnerability exists in the "Key Distribution Center" in Microsoft Windows Server. No...
PT-2021-4837 · Microsoft · Windows Key Distribution Center +1
Name of the Vulnerable Software and Affected Versions: Windows Key Distribution Center KDC affected versions not specified Description: The issue is related to information disclosure in the Kerberos Key Distribution Center KDC service of Microsoft Windows operating systems. It allows a remote...
F5 Big-IP Vulnerable to Security-Bypass Bug
F5 Networks’ Big-IP Application Delivery Services appliance contains a Key Distribution Center KDC spoofing vulnerability, researchers disclosed – which an attacker could use to get past the security measures that protect sensitive workloads. Join Threatpost for “Fortifying Your Business Against...