211 matches found
CVE-2006-6144
The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...
MITKRB5-SA-2006-003: kadmind (via GSS-API lib) frees uninitialized pointers
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MIT krb5 Security Advisory 2006-003 Original release: 2007-01-09 Last update: 2007-01-09 Topic: kadmind via GSS-API mechglue frees uninitialized pointers Severity: CRITICAL CVE: CVE-2006-6144 CERT: VU831452 SUMMARY ======= The Kerberos administration...
GSS-API library / MIT Kerberos kadmind (uninitialized pointer free)
free of unallocated memory pointer in mechglue GSS API layer...
Kerberos administration daemon may free uninitialized pointers
Overview A vulnerability exists in the Kerberos administration daemon that may allow a remote, unauthenticated user to free uninitialized pointers. Freeing uninitialized pointers corrupts memory in a way that could allow an attacker to execute code. Description The MIT krb 5 administration daemon...
CVE-2006-6144
The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...
CVE-2006-6144
The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon kadmind and other products that use this library, allows remote attackers to cause a denial of service crash via unspecified vectors that cause mechglue to free...
CVE-2005-1124
Unknown vulnerability in the libgss Generic Security Services Library in Solaris 7, 8, and 9 allows local users to gain privileges by loading their own GSS-API...
[SA14971] Solaris Unspecified Generic Security Services Library Vulnerability
---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Solaris Unspecified Generic Security Services Library...
Solaris GSS API privilege escalation
Ralative part is used to load library...
CVE-2005-1124
Unknown vulnerability in the libgss Generic Security Services Library in Solaris 7, 8, and 9 allows local users to gain privileges by loading their own GSS-API...
CVE-2005-1124
CVE-2005-1124 affects Solaris 7–9 where the libgss Generic Security Services Library is vulnerable. The issue allows local users to gain privileges by loading their own GSS-API, with partial impact to confidentiality, integrity, and availability (per CVSS). The exploitation status and concrete fi...