16 matches found
Mageia: Security Advisory (MGASA-2013-0336)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for krb5 FEDORA-2015-2382
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SOL15783 - Kerberos vulnerability CVE-2013-1417
Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...
Fedora Update for krb5 FEDORA-2014-9305
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for krb5 FEDORA-2014-9315
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for krb5 FEDORA-2014-8189
The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : krb5 (openSUSE-SU-2013:1833-1)
the following security issues were fixed in krb5 : - Fix a KDC NULL pointer dereference CVE-2013-1417 that could affect realms with an uncommon configuration. bnc850660 bug-850660-CVE-2013-1417-KDC-null-deref-due-to-referrals .dif - Fix a KDC NULL pointer dereference CVE-2013-1418 that could affe...
Kerberos Cross-Realm Referrals KDC NULL Pointer Dereference Denial of Service (CVE-2013-1417)
A denial of service vulnerability has been reported in Kerberos. The vulnerability is due to a NULL pointer dereference within the "processtgsreq" function. A remote attacker can exploit this vulnerability by sending a specially crafted request to a KDC serving a realm...
Fedora Update for krb5 FEDORA-2013-21786
Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2013-21786 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
Fedora Update for krb5 FEDORA-2013-21786
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated krb5 package fixes security vulnerabilities
An authenticated remote client can cause a KDC to crash by making a valid TGS-REQ to a KDC serving a realm with a single-component name. The processtgsreq function dereferences a null pointer because an unusual failure condition causes a helper function to return success CVE-2013-1417. If a KDC...
CVE-2013-1417
dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...
CVE-2013-1417
dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...
CVE-2013-1417
dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...
CVE-2013-1417
CVE-2013-1417 concerns MIT Kerberos 5 KDC (krb5) prior to 1.11.4. The flaw occurs in do_tgs_req.c when a single-component realm name is used, allowing remote authenticated users to trigger a cross-realm referral for a host-based service principal via a TGS-REQ, resulting in a daemon crash (denial...
Fedora 20 : krb5-1.11.3-32.fc20 (2013-21456)
This update incorporates a bug fix to properly reject more invalid names for credential caches, and the fix for CVE-2013-1417, which could cause a KDC to attempt to dereference a NULL pointer. Note that Tenable Network Security has extracted the preceding description block directly from the Fedor...