Lucene search
K

369 matches found

RedHat Linux
RedHat Linux
added 2005/07/12 6:12 p.m.6 views

security flaw

Heap-based buffer overflow in the Key Distribution Center KDC in MIT Kerberos 5 krb5 1.4.1 and earlier allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a certain valid TCP or UDP request...

7.5CVSS8AI score0.08425EPSS
Exploits0References4
securityvulns
securityvulns
added 2004/12/22 12:0 a.m.28 views

MITKRB5-SA-2004-004: heap overflow in libkadm5srv

-----BEGIN PGP SIGNED MESSAGE----- MIT krb5 Security Advisory 2004-004 Original release: 2004-12-20 Topic: heap buffer overflow in libkadm5srv Severity: serious SUMMARY ======= The MIT Kerberos 5 administration library libkadm5srv contains a heap buffer overflow in password history handling code...

7.2CVSS9.8AI score0.00734EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/12/06 12:0 a.m.35 views

krb5 -- heap buffer overflow vulnerability in libkadm5srv

A MIT krb5 Security Advisory reports: The MIT Kerberos 5 administration library libkadm5srv contains a heap buffer overflow in password history handling code which could be exploited to execute arbitrary code on a Key Distribution Center KDC host. The overflow occurs during a password change of a...

7.2CVSS2AI score0.00734EPSS
Exploits0References1
Gentoo Linux
Gentoo Linux
added 2004/09/16 12:0 a.m.33 views

Heimdal: ftpd root escalation

Background Heimdal is an implementation of Kerberos 5. Description Przemyslaw Frasunek discovered several flaws in lukemftpd, which also apply to Heimdal ftpd's out-of-band signal handling code. Additionally, a potential vulnerability that could lead to Denial of Service by the Key Distribution...

5.1CVSS6.8AI score0.02416EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/16 12:0 a.m.27 views

GLSA-200409-19 : Heimdal: ftpd root escalation

The remote host is affected by the vulnerability described in GLSA-200409-19 Heimdal: ftpd root escalation Przemyslaw Frasunek discovered several flaws in lukemftpd, which also apply to Heimdal ftpd's out-of-band signal handling code. Additionally, a potential vulnerability that could lead to...

5.1CVSS5.9AI score0.02416EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2004/09/10 4:0 a.m.61 views

CVE-2004-0642

Double free vulnerabilities in the error handling code for ASN.1 decoders in the 1 Key Distribution Center KDC library and 2 client library for MIT Kerberos 5 krb5 1.3.4 and earlier may allow remote attackers to execute arbitrary code...

7.5CVSS7.5AI score0.08257EPSS
Exploits0
CVE
CVE
added 2004/09/10 4:0 a.m.95 views

CVE-2004-0642

MIT Kerberos 5 (krb5) is affected by CVE-2004-0642 due to double-free vulnerabilities in the ASN.1 decoder error handling for both the KDC library and the krb5 client library (versions 1.3.4 and earlier). The issue can allow remote attackers to execute arbitrary code, potentially compromising the...

7.5CVSS9.9AI score0.08257EPSS
Exploits0References13Affected Software1
Gentoo Linux
Gentoo Linux
added 2004/09/06 12:0 a.m.46 views

MIT krb5: Multiple vulnerabilities

Background MIT krb5 is the free implementation of the Kerberos network authentication protocol by the Massachusetts Institute of Technology. Description The implementation of the Key Distribution Center KDC and the MIT krb5 library contain double-free vulnerabilities, making client programs as we...

9.8CVSS7.6AI score0.08257EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/09/06 12:0 a.m.53 views

GLSA-200409-09 : MIT krb5: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200409-09 MIT krb5: Multiple vulnerabilities The implementation of the Key Distribution Center KDC and the MIT krb5 library contain double-free vulnerabilities, making client programs as well as application servers vulnerable. The...

9.8CVSS8.5AI score0.08257EPSS
Exploits0References7
securityvulns
securityvulns
added 2004/09/02 12:0 a.m.46 views

MITKRB5-SA-2004-002: double-free vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- MIT krb5 Security Advisory 2004-002 Original release: 2004-08-31 Topic: double-free vulnerabilities in KDC and libraries Severity: CRITICAL SUMMARY ======= The MIT Kerberos 5 implementation's Key Distribution Center KDC program contains a double-free vulnerabili...

7.5CVSS1.6AI score0.08257EPSS
Exploits0
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.26 views

CVE-2003-0058

MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allows remote authenticated attackers to cause a denial of service crash on KDCs within the same realm via a certain protocol request that causes a null dereference...

8.7AI score0.0483EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2004/09/01 4:0 a.m.29 views

CVE-2003-0058

MIT Kerberos V5 Key Distribution Center KDC before 1.2.5 allows remote authenticated attackers to cause a denial of service crash on KDCs within the same realm via a certain protocol request that causes a null dereference...

5CVSS6AI score0.0483EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/07/06 12:0 a.m.41 views

RHEL 2.1 : krb5 (RHSA-2003:052)

Updated kerberos packages fix a number of vulnerabilities found in MIT Kerberos. Kerberos is a network authentication system. The MIT Kerberos team released an advisory describing a number of vulnerabilities that affect the kerberos packages shipped by Red Hat. An integer signedness error in the...

9.8CVSS8.1AI score0.15031EPSS
Exploits1References23
Snyk
Snyk
added 2003/04/02 5:0 a.m.1 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that...

5.3CVSS6.5AI score0.01947EPSS
Exploits0References2
Snyk
Snyk
added 2003/04/02 5:0 a.m.1 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS. The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that...

5.3CVSS6.6AI score0.02691EPSS
Exploits0References2
OSV
OSV
added 2003/04/02 5:0 a.m.7 views

CVE-2003-0072

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes an out-of-bounds read of an array aka "array overrun"...

6AI score
Exploits0References9
OSV
OSV
added 2003/04/02 5:0 a.m.1 views

DEBIAN-CVE-2003-0082

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap aka "buffer underrun"...

5CVSS6.6AI score0.02691EPSS
Exploits0References1
OSV
OSV
added 2003/04/02 5:0 a.m.2 views

DEBIAN-CVE-2003-0072

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes an out-of-bounds read of an array aka "array overrun"...

5CVSS6.5AI score0.01947EPSS
Exploits0References1
OSV
OSV
added 2003/04/02 5:0 a.m.7 views

CVE-2003-0082

The Key Distribution Center KDC in Kerberos 5 krb5 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service crash on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap aka "buffer underrun"...

6.1AI score
Exploits0References13
RedHat Linux
RedHat Linux
added 2003/03/26 9:49 p.m.8 views

Critical: Red Hat Security Advisory: : Updated kerberos packages fix various vulnerabilities

Updated Kerberos packages fix a number of vulnerabilities found in MIT Kerberos. Kerberos is a network authentication system. The MIT Kerberos team released an advisory describing a number of vulnerabilities that affect the kerberos packages shipped by Red Hat. These vulnerabilities include: An...

7.5CVSS7.4AI score0.15031EPSS
Exploits1References4
Rows per page
Query Builder