Lucene search
K

16 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.23 views

Mageia: Security Advisory (MGASA-2013-0336)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.9AI score0.05508EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2015/03/10 12:0 a.m.35 views

Fedora Update for krb5 FEDORA-2015-2382

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9CVSS8.7AI score0.08085EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2014/11/03 12:0 a.m.34 views

SOL15783 - Kerberos vulnerability CVE-2013-1417

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

3.5CVSS2.8AI score0.01932EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2014/08/27 12:0 a.m.30 views

Fedora Update for krb5 FEDORA-2014-9305

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.6AI score0.08085EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/08/15 12:0 a.m.27 views

Fedora Update for krb5 FEDORA-2014-9315

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS7.6AI score0.08085EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2014/08/08 12:0 a.m.36 views

Fedora Update for krb5 FEDORA-2014-8189

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.07138EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.38 views

openSUSE Security Update : krb5 (openSUSE-SU-2013:1833-1)

the following security issues were fixed in krb5 : - Fix a KDC NULL pointer dereference CVE-2013-1417 that could affect realms with an uncommon configuration. bnc850660 bug-850660-CVE-2013-1417-KDC-null-deref-due-to-referrals .dif - Fix a KDC NULL pointer dereference CVE-2013-1418 that could affe...

4.3CVSS6.9AI score0.05508EPSS
Exploits1References5
Check Point Advisories
Check Point Advisories
added 2014/03/11 12:0 a.m.21 views

Kerberos Cross-Realm Referrals KDC NULL Pointer Dereference Denial of Service (CVE-2013-1417)

A denial of service vulnerability has been reported in Kerberos. The vulnerability is due to a NULL pointer dereference within the "processtgsreq" function. A remote attacker can exploit this vulnerability by sending a specially crafted request to a KDC serving a realm...

3.7AI score0.01932EPSS
Exploits1
OpenVAS
OpenVAS
added 2013/12/04 12:0 a.m.39 views

Fedora Update for krb5 FEDORA-2013-21786

Check for the Version of krb5 OpenVAS Vulnerability Test Fedora Update for krb5 FEDORA-2013-21786 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

4.3CVSS0.05508EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/12/04 12:0 a.m.26 views

Fedora Update for krb5 FEDORA-2013-21786

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.6AI score0.05508EPSS
Exploits1References2
Mageia
Mageia
added 2013/11/20 8:41 p.m.52 views

Updated krb5 package fixes security vulnerabilities

An authenticated remote client can cause a KDC to crash by making a valid TGS-REQ to a KDC serving a realm with a single-component name. The processtgsreq function dereferences a null pointer because an unusual failure condition causes a helper function to return success CVE-2013-1417. If a KDC...

4.3CVSS1.1AI score0.05508EPSS
Exploits1References3
OSV
OSV
added 2013/11/20 2:12 p.m.8 views

CVE-2013-1417

dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...

6AI score
Exploits0References5
NVD
NVD
added 2013/11/20 2:12 p.m.15 views

CVE-2013-1417

dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...

3.5CVSS6AI score0.01932EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2013/11/20 2:12 p.m.26 views

CVE-2013-1417

dotgsreq.c in the Key Distribution Center KDC in MIT Kerberos 5 aka krb5 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service daemon crash via a TGS-REQ request that triggers an attempted cross-realm referral for a host-bas...

3.5CVSS7.1AI score0.01932EPSS
Exploits1References2
CVE
CVE
added 2013/11/20 11:0 a.m.74 views

CVE-2013-1417

CVE-2013-1417 concerns MIT Kerberos 5 KDC (krb5) prior to 1.11.4. The flaw occurs in do_tgs_req.c when a single-component realm name is used, allowing remote authenticated users to trigger a cross-realm referral for a host-based service principal via a TGS-REQ, resulting in a daemon crash (denial...

3.5CVSS6AI score0.01932EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/11/19 12:0 a.m.27 views

Fedora 20 : krb5-1.11.3-32.fc20 (2013-21456)

This update incorporates a bug fix to properly reject more invalid names for credential caches, and the fix for CVE-2013-1417, which could cause a KDC to attempt to dereference a NULL pointer. Note that Tenable Network Security has extracted the preceding description block directly from the Fedor...

3.5CVSS7.2AI score0.01932EPSS
Exploits1References3
Rows per page
Query Builder