Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.24 views

Oracle Linux 5 : krb5 (ELSA-2009-0408)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0408 advisory. - update to revised patch for CVE-2009-0844/CVE-2009-0845 - add fix for potential buffer read overrun in the SPNEGO GSSAPI mechanism 490635,...

10CVSS7.6AI score0.08898EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.30 views

SLES10: Security update for Kerberos

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: krb5 krb5-apps-clients krb5-apps-servers krb5-client krb5-devel krb5-server More details may also be found by searching for the SuSE Enterprise Server 10 pat...

10CVSS0.5AI score0.08898EPSS
Exploits3
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.29 views

SLES10: Security update for Kerberos

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: krb5 krb5-apps-clients krb5-apps-servers krb5-client krb5-devel krb5-server More details may also be found by searching for the SuSE Enterprise Server 10 pat...

10CVSS7.2AI score0.08898EPSS
Exploits3References1
OpenVAS
OpenVAS
added 2009/10/11 12:0 a.m.30 views

SLES11: Security update for Kerberos

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: krb5 krb5-apps-clients krb5-apps-servers krb5-client krb5-server More details may also be found by searching for the SuSE Enterprise Server 11 patch database...

10CVSS7.2AI score0.08898EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.26 views

SuSE 11 Security Update : Kerberos (SAT Patch Number 738)

Clients sending negotiation requests with invalid flags could crash the kerberos server. CVE-2009-0845 GSS-API clients could crash when reading from an invalid address space. CVE-2009-0844 Invalid length checks could crash applications using the kerberos ASN.1 parser. CVE-2009-0847 Under certain...

10CVSS7.7AI score0.08898EPSS
Exploits3References11
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.35 views

SuSE 10 Security Update : Kerberos (ZYPP Patch Number 6140)

Clients sending negotiation requests with invalid flags could crash the kerberos server. CVE-2009-0845 GSS-API clients could crash when reading from an invalid address space. CVE-2009-0844 Invalid length checks could crash applications using the kerberos ASN.1 parser. CVE-2009-0847 Under certain...

10CVSS7.7AI score0.08898EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2009/09/23 12:0 a.m.27 views

Solaris Update for pam_krb5.so.1 140130-09

Check for the Version of pamkrb5.so.1 OpenVAS Vulnerability Test Solaris Update for pamkrb5.so.1 140130-09 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

10CVSS0.2AI score0.08898EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.35 views

openSUSE Security Update : krb5 (krb5-740)

Clients sending negotiation requests with invalid flags could crash the kerberos server CVE-2009-0845. GSS-API clients could crash when reading from an invalid address space CVE-2009-0844. Invalid length checks could crash applications using the kerberos ASN.1 parser CVE-2009-0847. Under certain...

10CVSS7.8AI score0.08898EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.32 views

openSUSE Security Update : krb5 (krb5-740)

Clients sending negotiation requests with invalid flags could crash the kerberos server CVE-2009-0845. GSS-API clients could crash when reading from an invalid address space CVE-2009-0844. Invalid length checks could crash applications using the kerberos ASN.1 parser CVE-2009-0847. Under certain...

10CVSS7.8AI score0.08898EPSS
Exploits3References7
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.24 views

Fedora 10 : krb5-1.6.3-18.fc10 (2009-2852)

This update incorporates patches to fix potential read overflow and NULL pointer dereferences in the implementation of the SPNEGO GSSAPI mechanism CVE-2009-0844, CVE-2009-0845, attempts to free an uninitialized pointer during protocol parsing CVE-2009-0846, and a bug in length validation during...

10CVSS7.2AI score0.08898EPSS
Exploits3References9
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.28 views

SuSE Security Advisory SUSE-SA:2009:019 (krb5)

The remote host is missing updates announced in advisory SUSE-SA:2009:019. OpenVAS Vulnerability Test $Id: susesa2009019.nasl 6668 2017-07-11 13:34:29Z cfischer $ Description: Auto-generated from advisory SUSE-SA:2009:019 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.6AI score0.08898EPSS
Exploits3
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.27 views

Fedora Core 10 FEDORA-2009-2852 (krb5)

The remote host is missing an update to krb5 announced via advisory FEDORA-2009-2852. OpenVAS Vulnerability Test $Id: fcore20092852.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-2852 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

10CVSS0.5AI score0.08898EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.28 views

Fedora Core 9 FEDORA-2009-2834 (krb5)

The remote host is missing an update to krb5 announced via advisory FEDORA-2009-2834. OpenVAS Vulnerability Test $Id: fcore20092834.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-2834 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

10CVSS0.5AI score0.08898EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.19 views

Fedora Core 9 FEDORA-2009-2834 (krb5)

The remote host is missing an update to krb5 announced via advisory FEDORA-2009-2834. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

10CVSS7.4AI score0.08898EPSS
Exploits3References5
OpenVAS
OpenVAS
added 2009/04/15 12:0 a.m.26 views

Debian Security Advisory DSA 1766-1 (krb5)

The remote host is missing an update to krb5 announced via advisory DSA 1766-1. OpenVAS Vulnerability Test $Id: deb17661.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1766-1 krb5 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

10CVSS0.5AI score0.08898EPSS
Exploits3
seebug.org
seebug.org
added 2009/04/10 12:0 a.m.46 views

MIT Kerberos SPNEGO和ASN.1多个拒绝服务漏洞

BUGTRAQ ID: 34408 CVECAN ID: CVE-2009-0844,CVE-2009-0847 Kerberos是一款广泛使用的使用强壮的加密来验证客户端和服务器端的网络协议。MIT Kerberos 5是一种常用的开源Kerberos实现。 krb5在实现SPNEGO GSS-API机制时getinputtoken函数可能会读过网络输入缓冲区的末尾,如果读取了无效地址空间可能会导致任何使用Kerberos GSS-API库来认证用户的网络服务崩溃。...

5.8CVSS0.2AI score0.04316EPSS
Exploits1
Debian
Debian
added 2009/04/09 1:33 a.m.28 views

[SECURITY] [DSA 1766-1] New krb5 packages fix several vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA-1766-1 [email protected] http://www.debian.org/security/ Nico Golde April 9th, 2009 http://www.debian.org/security/faq -...

10CVSS8.1AI score0.08898EPSS
Exploits3
UbuntuCve
UbuntuCve
added 2009/04/09 12:30 a.m.29 views

CVE-2009-0847

The asn1bufimbed function in the ASN.1 decoder in MIT Kerberos 5 aka krb5 1.6.3, when PK-INIT is used, allows remote attackers to cause a denial of service application crash via a crafted length value that triggers an erroneous malloc call, related to incorrect calculations with pointer arithmeti...

4.3CVSS7.2AI score0.02773EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/04/09 12:0 a.m.39 views

openSUSE 10 Security Update : krb5 (krb5-6139)

Clients sending negotiation requests with invalid flags could crash the kerberos server CVE-2009-0845. GSS-API clients could crash when reading from an invalid address space CVE-2009-0844. Invalid length checks could crash applications using the kerberos ASN.1 parser CVE-2009-0847. Under certain...

10CVSS7.8AI score0.08898EPSS
Exploits3References4
CVE
CVE
added 2009/04/09 12:0 a.m.94 views

CVE-2009-0847

CVE-2009-0847 affects MIT Kerberos 5 (krb5) SPNEGO/GSS-API and the ASN.1 decoder. The OVMSA-2009-0003 advisory documents that 1.5–1.6.3 krb5 releases are vulnerable to crafted DER/length values, enabling remote attackers to crash daemons (and potentially execute code) due to length validation and...

4.3CVSS7.1AI score0.02773EPSS
Exploits1References38Affected Software1
Rows per page
Query Builder