Lucene search
+L

793 matches found

Debian CVE
Debian CVE
added 2004/04/06 4:0 a.m.34 views

CVE-2004-0371

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path...

5CVSS6.4AI score0.01528EPSS
Exploits0
Cvelist
Cvelist
added 2004/04/06 4:0 a.m.23 views

CVE-2004-0371

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path...

6.3AI score0.01528EPSS
Exploits0References6
CVE
CVE
added 2004/04/06 4:0 a.m.51 views

CVE-2004-0371

CVE-2004-0371 affects Heimdal Kerberos implementations prior to fixed versions (0.6.1 and 0.5.x vulnerable ranges). The issue is incorrect validation of cross-realm trust paths, i.e., missing/insufficient checks of the transited/realm chain, allowing a domain controller or realm host with control...

5CVSS6.3AI score0.01528EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2004/04/06 12:0 a.m.17 views

DSA-476 heimdal - cross-realm

Bulletin has no description...

5CVSS6AI score0.01528EPSS
Exploits0
FreeBSD
FreeBSD
added 2004/04/01 12:0 a.m.23 views

Incorrect cross-realm trust handling in Heimdal

Heimdal does not correctly validate the transited' field of Kerberos tickets when computing the authentication path. This could allow a rogue KDC with which cross-realm relationships have been established to impersonate any KDC in the authentication path...

5CVSS6.6AI score0.01528EPSS
Exploits0References1
Debian
Debian
added 2003/04/09 3:56 p.m.32 views

[SECURITY] [DSA 269-2] New heimdal packages fix authentication failure

-------------------------------------------------------------------------- Debian Security Advisory DSA 269-2 [email protected] http://www.debian.org/security/ Martin Schulze April 9th, 2003 http://www.debian.org/security/faq -...

7.5CVSS9.7AI score0.04284EPSS
Exploits0
Debian
Debian
added 2003/04/09 3:56 p.m.40 views

[SECURITY] [DSA 269-2] New heimdal packages fix authentication failure

-------------------------------------------------------------------------- Debian Security Advisory DSA 269-2 [email protected] http://www.debian.org/security/ Martin Schulze April 9th, 2003 http://www.debian.org/security/faq -...

7.5CVSS0.5AI score0.04284EPSS
Exploits0
Debian
Debian
added 2003/03/26 12:1 p.m.42 views

[SECURITY] [DSA 269-1] New heimdal packages fix authentication failure

-------------------------------------------------------------------------- Debian Security Advisory DSA 269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 26th, 2003 http://www.debian.org/security/faq -...

7.5CVSS0.8AI score0.04284EPSS
Exploits0
Debian
Debian
added 2003/03/26 12:1 p.m.31 views

[SECURITY] [DSA 269-1] New heimdal packages fix authentication failure

-------------------------------------------------------------------------- Debian Security Advisory DSA 269-1 [email protected] http://www.debian.org/security/ Martin Schulze March 26th, 2003 http://www.debian.org/security/faq -...

7.5CVSS9.4AI score0.04284EPSS
Exploits0
OSV
OSV
added 2003/03/26 12:0 a.m.16 views

DSA-269 heimdal - Cryptographic weakness

Bulletin has no description...

7.5CVSS6.3AI score0.04284EPSS
Exploits0
OSV
OSV
added 2003/03/24 5:0 a.m.2 views

DEBIAN-CVE-2003-0138

Version 4 of the Kerberos protocol krb4, as used in Heimdal and other packages, allows an attacker to impersonate any principal in a realm via a chosen-plaintext attack...

7.5CVSS8.8AI score0.04284EPSS
Exploits0References1
OSV
OSV
added 2003/03/24 5:0 a.m.11 views

CVE-2003-0138

Version 4 of the Kerberos protocol krb4, as used in Heimdal and other packages, allows an attacker to impersonate any principal in a realm via a chosen-plaintext attack...

6.1AI score
Exploits0References16
Debian
Debian
added 2002/10/31 3:10 p.m.15 views

[SECURITY] [DSA 185-1] New heimdal packages fix buffer overflows

-------------------------------------------------------------------------- Debian Security Advisory DSA 185-1 [email protected] http://www.debian.org/security/ Martin Schulze October 31st, 2002 http://www.debian.org/security/faq -...

7.6AI score
Exploits0
Debian
Debian
added 2002/10/31 3:10 p.m.16 views

[SECURITY] [DSA 185-1] New heimdal packages fix buffer overflows

-------------------------------------------------------------------------- Debian Security Advisory DSA 185-1 [email protected] http://www.debian.org/security/ Martin Schulze October 31st, 2002 http://www.debian.org/security/faq -...

0.2AI score
Exploits0
OSV
OSV
added 2002/10/31 12:0 a.m.13 views

DSA-185 heimdal - buffer overflow

Bulletin has no description...

10CVSS6.3AI score0.15105EPSS
Exploits0
NVD
NVD
added 2002/10/28 5:0 a.m.19 views

CVE-2002-1225

Multiple buffer overflows in Heimdal before 0.5, possibly in both the 1 kadmind and 2 kdc servers, may allow remote attackers to gain root access...

10CVSS6.9AI score0.04549EPSS
Exploits0References5
NVD
NVD
added 2002/10/28 5:0 a.m.18 views

CVE-2002-1226

Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the 1 kadmind and 2 kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows CVE-2002-1225...

10CVSS7AI score0.0239EPSS
Exploits0References3
OSV
OSV
added 2002/10/28 5:0 a.m.5 views

DEBIAN-CVE-2002-1225

Multiple buffer overflows in Heimdal before 0.5, possibly in both the 1 kadmind and 2 kdc servers, may allow remote attackers to gain root access...

10CVSS7.5AI score0.04549EPSS
Exploits0References1
OSV
OSV
added 2002/10/28 5:0 a.m.7 views

CVE-2002-1225

Multiple buffer overflows in Heimdal before 0.5, possibly in both the 1 kadmind and 2 kdc servers, may allow remote attackers to gain root access...

6.9AI score
Exploits0References7
OSV
OSV
added 2002/10/28 5:0 a.m.3 views

DEBIAN-CVE-2002-1226

Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the 1 kadmind and 2 kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows CVE-2002-1225...

10CVSS7.4AI score0.0239EPSS
Exploits0References1
Rows per page
Query Builder