Lucene search
+L

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-1353

Malware in sbrugna...

4.3CVSS5.7AI score0.02253EPSS
Exploits0References31
Microsoft CVE
Microsoft CVE
added 2024/08/05 7:0 a.m.1 views

In MIT Kerberos 5 (aka krb5) before 1.21.3 an attacker can cause invalid memory reads during GSS message token handling by sending message tokens with invalid length fields.

...

9.1CVSS8.9AI score0.01863EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/01/24 12:0 a.m.34 views

FreeBSD Ports: krb5

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS5.6AI score0.02253EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/01/24 12:0 a.m.35 views

FreeBSD Ports: krb5

The remote host is missing an update to the system as announced in the referenced advisory. VID 9f971cea-03f5-11e0-bf50-001a926c7637 OpenVAS Vulnerability Test $ Description: Auto generated from VID 9f971cea-03f5-11e0-bf50-001a926c7637 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

4.3CVSS5.6AI score0.02253EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/01/24 12:0 a.m.31 views

FreeBSD Ports: krb5

The remote host is missing an update to the system as announced in the referenced advisory. VID 0d57c1d9-03f4-11e0-bf50-001a926c7637 OpenVAS Vulnerability Test $ Description: Auto generated from VID 0d57c1d9-03f4-11e0-bf50-001a926c7637 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...

4.3CVSS5.6AI score0.02253EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.34 views

Ubuntu: Security Advisory (USN-1030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.3CVSS5.1AI score0.02847EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.31 views

Ubuntu Update for krb5 vulnerabilities USN-1030-1

Ubuntu Update for Linux kernel vulnerabilities USN-1030-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10301.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for krb5 vulnerabilities USN-1030-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...

4.3CVSS6.5AI score0.02847EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/12/10 12:0 a.m.60 views

Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : krb5 vulnerabilities (USN-1030-1)

It was discovered that Kerberos did not properly determine the acceptability of certain checksums. A remote attacker could use certain checksums to alter the prompt message, modify a response to a Key Distribution Center KDC or forge a KRB-SAFE message. CVE-2010-1323 It was discovered that Kerber...

6.3CVSS5.7AI score0.02847EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2010/12/09 12:0 a.m.35 views

Mandriva Update for krb5 MDVSA-2010:246 (krb5)

Check for the Version of krb5 OpenVAS Vulnerability Test Mandriva Update for krb5 MDVSA-2010:246 krb5 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.3CVSS6.4AI score0.02847EPSS
Exploits0References2
OSV
OSV
added 2010/12/02 4:22 p.m.6 views

CVE-2010-1324

MIT Kerberos 5 aka krb5 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via 1 an unkeyed checksum, 2 an unkeyed PAC checksum, or 3 a KrbFastArmoredRe...

3.7CVSS6.8AI score
Exploits0References28
Prion
Prion
added 2010/12/02 4:22 p.m.19 views

Code injection

MIT Kerberos 5 aka krb5 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via 1 an unkeyed checksum, 2 an unkeyed PAC checksum, or 3 a KrbFastArmoredRe...

4.3CVSS7.6AI score0.02253EPSS
Exploits0References27Affected Software1
CVE
CVE
added 2010/12/02 4:0 p.m.94 views

CVE-2010-1324

MIT Kerberos 5 (krb5) 1.7.x and 1.8.x up to 1.8.3 are affected by CVE-2010-1324 due to improper acceptability of checksums when verifying the req-checksum in a KrbFastArmoredReq, including unkeyed checksums and RC4-based checksums. This could allow remote attackers to forge GSS tokens, bypass sec...

4.3CVSS5.7AI score0.02253EPSS
Exploits0References27Affected Software1
Debian CVE
Debian CVE
added 2010/12/02 4:0 p.m.25 views

CVE-2010-1324

MIT Kerberos 5 aka krb5 1.7.x and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to forge GSS tokens, gain privileges, or have unspecified other impact via 1 an unkeyed checksum, 2 an unkeyed PAC checksum, or 3 a KrbFastArmoredRe...

4.3CVSS6.4AI score0.02253EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/01 12:0 a.m.63 views

Mandriva Linux Security Advisory : krb5 (MDVSA-2010:246)

Multiple vulnerabilities were discovered and corrected in krb5 : An unauthenticated remote attacker could alter a SAM-2 challenge, affecting the prompt text seen by the user or the kind of response sent to the KDC. Under some circumstances, this can negate the incremental security benefit of usin...

6.3CVSS5.8AI score0.02847EPSS
Exploits0References5
securityvulns
securityvulns
added 2010/12/01 12:0 a.m.92 views

MITKRB5-SA-2010-007 Multiple checksum handling vulnerabilities [CVE-2010-1324 CVE-2010-1323 CVE-2010-4020 CVE-2010-4021]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2010-007 MIT krb5 Security Advisory 2010-007 Original release: 2010-11-30 Last update: 2010-11-30 Topic: Multiple checksum handling vulnerabilities CVE-2010-1324 krb5 GSS-API applications may accept unkeyed checksums krb5 application servic...

4.3CVSS7AI score0.02847EPSS
Exploits0
FreeBSD
FreeBSD
added 2010/11/30 12:0 a.m.45 views

krb5 -- multiple checksum handling vulnerabilities

The MIT Kerberos team reports: MIT krb incorrectly accepts an unkeyed checksum with DES session keys for version 2 RFC 4121 of the GSS-API krb5 mechanism. An unauthenticated remote attacker can forge GSS tokens that are intended to be integrity-protected but unencrypted, if the targeted...

4.3CVSS6AI score0.02253EPSS
Exploits0References2
Rows per page
Query Builder