Lucene search
K

4 matches found

Microsoft CVE
Microsoft CVE
added 2024/10/15 7:0 a.m.6 views

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application possibly resulting in a denial of service (DoS) attack.

...

6.5CVSS6.6AI score0.0369EPSS
Exploits0
OSV
OSV
added 2019/07/31 3:15 p.m.2 views

ALPINE-CVE-2018-16860

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name...

7.5CVSS6.5AI score0.02486EPSS
Exploits0References1
OSV
OSV
added 2019/07/31 3:15 p.m.3 views

DEBIAN-CVE-2018-16860

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name...

7.5CVSS7.3AI score0.02486EPSS
Exploits0References1
OSV
OSV
added 2019/05/14 12:0 a.m.2 views

UBUNTU-CVE-2018-16860

A flaw was found in samba's Heimdal KDC implementation, versions 4.8.x up to, excluding 4.8.12, 4.9.x up to, excluding 4.9.8 and 4.10.x up to, excluding 4.10.3, when used in AD DC mode. A man in the middle attacker could use this flaw to intercept the request to the KDC and replace the user name...

7.5CVSS7AI score0.02486EPSS
Exploits0References6
Rows per page
Query Builder