34 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-3116
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on th...
CVE-2022-3116
...
The vulnerability of the Heimdal protocol’s Kerberos 5 implementation, related to the handling of the zero pointer, allows a perpetrator to cause a service failure.
The vulnerability of the Heimdal protocol’s Kerberos 5 implementation is related to the handling of the zero pointer. Exploiting this vulnerability could allow a malicious actor to cause a service failure...
Heimdal security breach
Heimdal is a Kerberos implementation and security program from Heimdal Open Source. A security vulnerability exists in Heimdal that originates from allowing an attacker to cause a denial of service DoS via the Threat To Process Correlation threat prevention module. Affected products and versions:...
SUSE CVE-2022-3116
The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash...
The vulnerability of the Heimdal Kerberos protocol in the Samba network communication software allows a attacker to execute arbitrary code.
The vulnerability of the Heimdal Kerberos protocol in the Samba network communication software package is related to the use of the cryptographic algorithm RC4-HMAC. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
Heimdal 安全漏洞
Heimdal is a Kerberos implementation and security program from Heimdal open source. Heimdal versions prior to 7.7.1 has a security vulnerability , the vulnerability stems from the existence of PKI certificate validation library denial of service...
Samba 4.0.x < 4.15.11 / 4.16.x < 4.16.6 / 4.17.x < 4.17.2 Buffer Overflow
A heap-based buffer overflow condition exists in all versions of Samba since 4.0 compiled with Heimdal Kerberos. Heimdal's GSSAPI library routines unwrapdes and unwrapdes3 DES for Samba 4.11 and earlier, Triple-DES for later versions contain a length-limited write heap buffer overflow on malloc...
Heimdal Software Kerberos 5 代码问题漏洞
Heimdal is a Kerberos implementation and security program from Heimdal Open Source. A code issue vulnerability exists in Heimdal Software Kerberos 5 that stems from a null pointer dereference that causes the application to crash...
PT-2022-7431 · Heimdal +3 · Heimdal Kerberos 5 +3
Name of the Vulnerable Software and Affected Versions: Heimdal Software Kerberos 5 affected versions not specified Description: The issue is related to a null pointer dereference in the Heimdal Software Kerberos 5 implementation. This can be exploited by an attacker with network access to cause t...
Heimdal Kerberos vulnerable to remotely triggered NULL pointer dereference
Overview The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash. Description CVE-2022-3116 A flawed logical condition in...
OESA-2022-1817 samba security update
Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue ...
Kerberos acceptors need easy access to stable
Description In order to avoid issues like CVE-2020-25717 AD Kerberos accepting services need access to unique, and ideally long-term stable identifiers of a user to perform authorization. The AD PAC provides this, but the most useful information is kept in a buffer which is NDR encoded, which mea...
SUSE SLES11 Security Update : bind (SUSE-SU-2021:14714-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14714-1 advisory. - In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND 9...
CVE-2021-25216
In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...
CVE-2021-25216 A second vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack
In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 - 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version an...
The vulnerability of the Heimdal protocol’s Kerberos implementation, related to errors in managing cryptographic keys, allows a perpetrator to carry out a “man-in-the-middle” attack.
The vulnerability of the Heimdal protocol’s Kerberos implementation is related to errors in managing cryptographic keys. Exploiting this vulnerability could allow a malicious actor to carry out a “man-in-the-middle” attack...
The vulnerability of the Heimdal protocol’s Kerberos implementation in the Samba network communication software allows attackers to expose sensitive information or cause service failures.
The vulnerability of the Heimdal protocol’s Kerberos 5 implementation in the Samba network communication software package is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to disclose protected informatio...
Debian: Security Advisory (DLA-1027-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Heimdal denial of service vulnerability
Heimdal is a Kerberos 5 implementation. A security vulnerability exists in Heimdal version 7.1.0. A remote attacker can exploit this vulnerability by sending specially crafted UDP packets to cause a denial of service crash, null pointer backreference, and segmentation error...