Lucene search
+L

5 matches found

RedHat Linux
RedHat Linux
added 2025/11/20 8:5 a.m.6 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/12 3:26 p.m.5 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00511EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2018/08/16 3:22 p.m.66 views

Security update for libheimdal (important)

This update for libheimdal to version 7.5.0 fixes the following issues: The following security vulnerability was fixed: - CVE-2017-17439: Fixed a remote denial of service vulnerability through which remote unauthenticated attackers were able to crash the KDC by sending a crafted UDP packet...

5CVSS2.2AI score0.03427EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/08/31 12:0 a.m.38 views

openSUSE Security Update : samba and resource-agents (openSUSE-2017-987) (Orpheus' Lyre)

This update provides Samba 4.6.7, which fixes the following issues : - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext the Ticket rather than the authenticated and encrypted KDC response. bsc1048278 - Fix cephwrapchdir. bsc1048790 - Fix ctdb logs to /var/log/log.ctdb...

8.1CVSS7AI score0.05118EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2017/07/15 12:0 a.m.25 views

Debian: Security Advisory (DSA-3912-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.2AI score0.05118EPSS
Exploits0References4
Rows per page
Query Builder