CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7759 matches found

RedHat Linux•added 2003/03/26 9:49 p.m.•5 views

Critical: Red Hat Security Advisory: : Updated kerberos packages fix various vulnerabilities

Updated Kerberos packages fix a number of vulnerabilities found in MIT Kerberos. Kerberos is a network authentication system. The MIT Kerberos team released an advisory describing a number of vulnerabilities that affect the kerberos packages shipped by Red Hat. These vulnerabilities include: An...

7.5CVSS7.4AI score0.15031EPSS

Exploits3References4

CVE•added 2003/03/26 5:0 a.m.•68 views

CVE-2003-0072

CVE-2003-0072 describes a remote, authenticated denial-of-service in the Kerberos 5 Key Distribution Center (KDC) for krb5 1.2.7 and earlier. A specific protocol request can trigger an out-of-bounds read of an array, crashing KDCs within the same realm. Connected advisories reference this CVE amo...

5CVSS8.9AI score0.01947EPSS

Exploits0References7Affected Software2

Cvelist•added 2003/03/26 5:0 a.m.•23 views

CVE-2003-0072

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes an out-of-bounds read of an array aka "array overrun"...

8.9AI score0.01947EPSS

Exploits0References7

Cvelist•added 2003/03/26 5:0 a.m.•22 views

CVE-2003-0082

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap aka "buffer underrun"...

9.1AI score0.02691EPSS

Exploits0References11

Debian CVE•added 2003/03/26 5:0 a.m.•26 views

CVE-2003-0072

5CVSS6AI score0.01947EPSS

Exploits0

OSV•added 2003/03/26 12:0 a.m.•14 views

DSA-269 heimdal - Cryptographic weakness

Bulletin has no description...

7.5CVSS6.3AI score0.04284EPSS

Exploits0

OSV•added 2003/03/19 12:0 a.m.•11 views

DSA-264 lxr - missing filename sanitizing

Bulletin has no description...

5CVSS6.3AI score0.04426EPSS

Exploits0

Debian•added 2003/03/10 2:44 p.m.•16 views

[SECURITY] [DSA 258-1] New ethereal packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 258-1 [email protected] http://www.debian.org/security/ Martin Schulze March 10th, 2003 http://www.debian.org/security/faq -...

7.5CVSS0.3AI score0.05816EPSS

Exploits1

OSV•added 2003/02/21 12:0 a.m.•13 views

DSA-252 slocate - buffer overflow

Bulletin has no description...

7.2CVSS6.1AI score0.01091EPSS

Exploits0

NVD•added 2003/02/19 5:0 a.m.•18 views

CVE-2003-0058

MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allows remote authenticated attackers to cause a denial of service crash on KDCs within the same realm via a certain protocol request that causes a null dereference...

5CVSS6.1AI score0.0483EPSS

Exploits0References11

NVD•added 2003/02/19 5:0 a.m.•17 views

CVE-2003-0060

Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via format string specifiers in Kerberos principal names...

7.5CVSS7.8AI score0.05556EPSS

Exploits0References6

OSV•added 2003/02/19 5:0 a.m.•5 views

CVE-2003-0058

6.3AI score

Exploits0References15

OSV•added 2003/02/19 5:0 a.m.•3 views

CVE-2003-0060

8.1AI score

Exploits0References10

Debian•added 2003/02/13 1:57 p.m.•22 views

[SECURITY] [DSA 250-1] New w3mmee-ssl packages fix cookie information leak

-------------------------------------------------------------------------- Debian Security Advisory DSA 250-1 [email protected] http://www.debian.org/security/ Martin Schulze February 12th, 2003 http://www.debian.org/security/faq -...

5CVSS0.1AI score0.02478EPSS

Exploits0

OSV•added 2003/01/21 12:0 a.m.•27 views

DSA-233 cvs - doubly freed memory

Bulletin has no description...

7.5CVSS6AI score0.2387EPSS

Exploits1

Debian•added 2003/01/14 3:37 p.m.•22 views

[SECURITY] [DSA 228-1] New libmcrypt packages fix buffer overflows and memory leak

-------------------------------------------------------------------------- Debian Security Advisory DSA 228-1 [email protected] http://www.debian.org/security/ Martin Schulze January 14th, 2003 http://www.debian.org/security/faq -...

7.5CVSS0.9AI score0.01726EPSS

Exploits0

Debian•added 2003/01/09 2:53 p.m.•17 views

[SECURITY] [DSA 225-1] New tomcat packages fix source disclosure vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 225-1 [email protected] http://www.debian.org/security/ Martin Schulze January 9th, 2002 http://www.debian.org/security/faq -...

7.5CVSS0.2AI score0.1682EPSS

Exploits1

OSV•added 2003/01/09 12:0 a.m.•23 views

DSA-225 tomcat4 - source disclosure

Bulletin has no description...

7.5CVSS6.1AI score0.05254EPSS

Exploits0

OSV•added 2003/01/02 12:0 a.m.•11 views

DSA-220 squirrelmail - cross site scripting

Bulletin has no description...

6.8CVSS6.2AI score0.01967EPSS

Exploits0