Lucene search
K

19 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/10 12:0 a.m.9 views

The vulnerability of the Kerberos Key Distribution Proxy Service in Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Kerberos Key Distribution Proxy Service in Windows operating systems is related to insufficient resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...

7.8CVSS7.5AI score0.0186EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2014-5353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The krb5ldapgetpasswordpolicyfromdn function in plugins/kdb/ldap/libkdbldap/ldappwdpolicy.c in MIT Kerberos 5 aka krb5 before 1.13.1, when the KDC uses LDAP,...

3.5CVSS7AI score0.04968EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2022/11/29 8:54 a.m.6 views

krb5: integer overflow vulnerabilities in PAC parsing

A vulnerability was found in MIT krb5. This flaw allows an authenticated attacker to cause a KDC or kadmind process to crash by reading beyond the bounds of allocated memory, creating a denial of service. A privileged attacker may similarly be able to cause a Kerberos or GSS application service t...

8.8CVSS6.5AI score0.06419EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2021/11/23 12:0 a.m.7 views

The vulnerability of the Kerberos Key Distribution Center (KDC) service on Microsoft Windows operating systems allows a perpetrator to disclose protected information.

The vulnerability of the Kerberos Key Distribution Center KDC service on Microsoft Windows systems is related to the disclosure of information. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

7.1CVSS6.5AI score0.03031EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2021/06/08 12:0 a.m.41 views

June 8, 2021 Public preview security update (KB5003645)

None None...

9CVSS6.8AI score0.13794EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2021/03/09 8:0 a.m.91 views

March 9, 2021—KB5000851 (Security-only update)

March 9, 2021—KB5000851 Security-only update Important: Verify that you have installed the required updates listed in the How to get this update section before installing this update. Important: For information about the various types of Windows updates, such as critical, security, driver, servic...

10CVSS7.9AI score0.19274EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2021/03/09 8:0 a.m.63 views

March 9, 2021—KB5000853 (Security-only update)

March 9, 2021—KB5000853 Security-only update Important: Windows 8.1 and Windows Server 2012 R2 have reached the end of mainstream support and are now in extended support. Starting in July 2020, there will no longer be optional, non-security releases known as "C" releases for this operating system...

10CVSS8AI score0.19274EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2021/01/12 8:0 a.m.61 views

January 12, 2021—KB4598279 (Monthly Rollup)

January 12, 2021—KB4598279 Monthly Rollup IMPORTANT Verify that you have installed the required updates listed in the How to get this update section before installing this update. NEW 11/10/20 For information about the various types of Windows updates, such as critical, security, driver, service...

9.8CVSS8.1AI score0.13794EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2020/08/10 3:14 p.m.3 views

OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

6.8CVSS7.4AI score0.04196EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/02/19 7:49 a.m.5 views

OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Security. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

6.8CVSS7.4AI score0.04196EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2019/03/13 12:0 a.m.319 views

openssl security update

1.0.2k-16.0.1.el76.1 - Bump release for rebuild. 1.0.2k-16.1 - use SHA-256 in FIPS RSA pairwise key check - fix CVE-2018-5407 - EC signature local timing side-channel key extraction 1.0.2k-16 - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on...

10CVSS0.5AI score0.99999EPSS
Exploits182
Tenable Nessus
Tenable Nessus
added 2013/11/18 12:0 a.m.44 views

MIT Kerberos 5 setup_server_realm() Remote DoS

The Kerberos service running on the remote host is affected by a remote denial of service DoS vulnerability. Attackers can exploit this issue to crash the affected KDC service, resulting in DoS conditions. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70941;...

4.3CVSS7AI score0.05508EPSS
Exploits0References2
seebug.org
seebug.org
added 2008/12/16 12:0 a.m.12 views

Sun Solaris Kerberos本地拒绝服务漏洞

BUGTRAQ ID: 32793 Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 Solaris的Kerberos服务处理认证信息的更新实现上存在漏洞,本地攻击者可能利用此漏洞导致服务不可用,合法用户无法正常登录访问。 Sun Solaris 9.0 Sun Solaris 8.0 Sun Solaris 10.0 Sun OpenSolaris snv01 - snv104 Sun --- Sun已经为此发布了一个安全公告(244866)以及相应补丁: 244866:A Security Vulnerability in the Management of...

6.7AI score
Exploits0
securityvulns
securityvulns
added 2005/08/09 12:0 a.m.24 views

Multiple Microsoft Windows Kerberos service vulnerabilities

DoS on protocol parsing. Ability so spoof server on smart card authentication...

4.5AI score
Exploits0References1
securityvulns
securityvulns
added 2004/02/11 12:0 a.m.34 views

EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption

Microsoft ASN.1 Library Length Overflow Heap Corruption Release Date: February 10, 2004 Date Reported: July 25, 2003 Severity: High Remote Code Execution Systems Affected: Microsoft Windows NT 4.0 all versions Microsoft Windows 2000 SP3 and earlier Microsoft Windows XP all versions Software...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2001/09/18 4:0 a.m.25 views

CVE-2001-0237

Memory leak in Microsoft 2000 domain controller allows remote attackers to cause a denial of service by repeatedly connecting to the Kerberos service and then disconnecting without sending any data...

6.6AI score0.20025EPSS
Exploits0References5
NVD
NVD
added 2001/06/27 4:0 a.m.18 views

CVE-2001-0237

Memory leak in Microsoft 2000 domain controller allows remote attackers to cause a denial of service by repeatedly connecting to the Kerberos service and then disconnecting without sending any data...

5CVSS6.6AI score0.20025EPSS
Exploits0References5
CERT
CERT
added 2001/05/17 12:0 a.m.31 views

Microsoft Windows 2000 Kerberos service vulnerable to DoS via repeated invalid requests

Overview A core service of Microsoft Windows 2000 domain controllers fails to correctly handle certain invalid requests. After receiving a number of invalid requests, the domain controller may have to be rebooted to return it to correct operation. A disabled domain controller can interfere with t...

5CVSS6.4AI score0.20025EPSS
Exploits0References6
securityvulns
securityvulns
added 2001/05/10 12:0 a.m.26 views

def-2001-24: Windows 2000 Kerberos DoS

====================================================================== Defcom Labs Advisory def-2001-24 Windows 2000 Kerberos DoS Author: Peter Grьndl [email protected] Release Date: 2001-05-09 ======================================================================...

0.4AI score
Exploits0
Rows per page
Query Builder