Lucene search
K

24 matches found

Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.36 views

Solaris 10 (sparc) : 123809-02

SunOS 5.10: rpcsecgss patch. Date this patch was last updated by Sun : Jun/25/07 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

10CVSS8.6AI score0.11376EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.38 views

Oracle Linux 5 : Important: / krb5 (ELSA-2007-0562)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0562 advisory. 1.3.4-49 - add patch to fix buffer overflow in kadmind 239073, CVE-2007-2798 1.3.4-48 - add patch to fix buffer overflow and double-free in rpc library...

10CVSS8.4AI score0.11376EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.31 views

Scientific Linux Security Update : krb5 on SL3.x i386/x86_64

David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. A remote unauthenticated attacker who can access kadmind could trigger this flaw and cause kadmind to crash or potentially execute arbitrary code as root. CVE-2007-2442 David Coffey also discovered an...

10CVSS8.8AI score0.11376EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.30 views

Scientific Linux Security Update : krb5 on SL5.x, SL4.x, SL3.x i386/x86_64

David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. On Scientific Linux 4 and 5, glibc detects attempts to free invalid pointers. A remote unauthenticated attacker who can access kadmind could trigger this flaw and cause kadmind to crash. CVE-2007-2442...

10CVSS8.8AI score0.11376EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2010/06/28 12:0 a.m.25 views

HP-UX PHSS_41167 : HP-UX Running Kerberos, Remote Denial of Service (DoS), Execution of Arbitrary Code (HPSBUX02544 SSRT100107 rev.1)

s700800 11.23 KRB5-Client Version 1.0 Cumulative patch : Potential security vulnerabilities have been identified on HP-UX running Kerberos. These vulnerabilities could be exploited by remote unauthenticated users to create a Denial of Service DoS or to execute arbitrary code. %NASLMINLEVEL 70300 ...

10CVSS6.5AI score0.11376EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.27 views

Mandriva Update for krb5 MDKSA-2007:137 (krb5)

Check for the Version of krb5 OpenVAS Vulnerability Test Mandriva Update for krb5 MDKSA-2007:137 krb5 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

9.3CVSS0.3AI score0.11376EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-477-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.11376EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.40 views

Fedora Update for krb5 FEDORA-2007-2066

Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2007-2066 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of...

10CVSS9.2AI score0.29842EPSS
Exploits8References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.20 views

Fedora Update for krb5 FEDORA-2007-0740

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.6AI score0.29842EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.24 views

Fedora Update for krb5 FEDORA-2007-620

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

10CVSS9.6AI score0.29842EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.39 views

Gentoo Security Advisory GLSA 200707-11 (mit-krb5)

The remote host is missing updates announced in advisory GLSA 200707-11. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

9.3CVSS0.9AI score0.11376EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.25 views

Debian: Security Advisory (DSA-1323-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.6AI score0.11376EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.26 views

Ubuntu 6.06 LTS / 6.10 / 7.04 : krb5 vulnerabilities (USN-477-1)

Wei Wang discovered that the krb5 RPC library did not correctly handle certain error conditions. A remote attacker could cause kadmind to free an uninitialized pointer, leading to a denial of service or possibly execution of arbitrary code with root privileges. CVE-2007-2442 Wei Wang discovered...

10CVSS8.7AI score0.11376EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2007/08/02 12:0 a.m.83 views

Mac OS X Multiple Vulnerabilities (Security Update 2007-007)

The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP -...

10CVSS8AI score0.90768EPSS
Exploits56References45
Tenable Nessus
Tenable Nessus
added 2007/07/02 12:0 a.m.33 views

Solaris 10 (sparc) : 123809-02

SunOS 5.10: rpcsecgss patch. Date this patch was last updated by Sun : Jun/25/07 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrandom...

10CVSS6.5AI score0.11376EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2007/07/01 12:0 a.m.36 views

Debian DSA-1323-1 : krb5 - several vulnerabilities

Several remote vulnerabilities have been discovered in the MIT reference implementation of the Kerberos network authentication protocol suite, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-2442 We...

10CVSS8.7AI score0.11376EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2007/06/27 12:1 a.m.76 views

USN-477-1: krb5 vulnerabilities

Wei Wang discovered that the krb5 RPC library did not correctly handle certain error conditions. A remote attacker could cause kadmind to free an uninitialized pointer, leading to a denial of service or possibly execution of arbitrary code with root privileges. CVE-2007-2442 Wei Wang discovered...

10CVSS8.6AI score0.11376EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2007/06/27 12:0 a.m.30 views

Mandrake Linux Security Advisory : krb5 (MDKSA-2007:137)

David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. A remote unauthenticated attacker who could access kadmind could trigger the flaw causing kadmind to crash or possibly execute arbitrary code CVE-2007-2442. David Coffey also discovered an overflow flaw...

10CVSS8.9AI score0.11376EPSS
Exploits1References3
OSV
OSV
added 2007/06/26 10:30 p.m.6 views

CVE-2007-2442

The gssrpcsvcauthgssapi function in the RPC library in MIT Kerberos 5 krb5 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes kadmind to free an uninitialized pointer during cleanup...

7.4AI score
Exploits0References69
CVE
CVE
added 2007/06/26 10:0 p.m.113 views

CVE-2007-2442

CVE-2007-2442 affects MIT Kerberos 5 (krb5) RPC library. In krb5 1.6.1 and earlier, the function gssrpc__svcauth_gssapi can mishandle a zero-length RPC credential, causing kadmind to free an uninitialized pointer during cleanup. This remote flaw could enable arbitrary code execution on vulnerable...

10CVSS9.5AI score0.11376EPSS
Exploits1References52Affected Software1
Rows per page
Query Builder