13 matches found
SUSE CVE-2008-0062
KDC in MIT Kerberos 5 krb5kdc does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free...
SUSE CVE-2008-0063
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The multiple vulnerabilities in the kerberos4kth-servers package of the Debian GNU/Linux operating system may lead to breaches of the confidentiality, integrity, and accessibility of protected information. These vulnerabilities can be exploited remotely...
DEBIAN-CVE-2008-0063
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
krb5: uninitialized pointer use in krb5kdc
KDC in MIT Kerberos 5 krb5kdc does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free...
krb5: possible leak of sensitive data from krb5kdc using krb4 request
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
krb5: possible leak of sensitive data from krb5kdc using krb4 request
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
krb5: uninitialized pointer use in krb5kdc
KDC in MIT Kerberos 5 krb5kdc does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free...
krb5: possible leak of sensitive data from krb5kdc using krb4 request
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
krb5: possible leak of sensitive data from krb5kdc using krb4 request
The Kerberos 4 support in KDC in MIT Kerberos 5 krb5kdc does not properly clear the unused portion of a buffer when generating an error message, which might allow remote attackers to obtain sensitive information, aka "Uninitialized stack values."...
Authentication Buffer Overflows
Due to bad usage of the base64 decode function to a stack-based buffer without checking the data length, it was possible for a malicious HTTP server to overflow the client during NTLM negotiation and for an FTP server to overflow the client during krb4 negotiation. The announcement of this flaw w...
DEBIAN-CVE-2004-0434
k5admind kadmind for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow...
CVE-1999-1099
Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user...