Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-1424

Malware in sbrugna...

7.5CVSS6.4AI score0.01296EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2011/12/28 7:5 p.m.41 views

Critical: Red Hat Security Advisory: krb5-appl security update

Updated krb5-appl packages that fix one security issue are now available for Red Hat Enterprise Linux 6.0 and 6.1 Extended Update Support. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System CVSS base score, which give...

10CVSS6.8AI score0.95104EPSS
Exploits19References3
RedHat Linux
RedHat Linux
added 2011/12/27 4:7 p.m.4 views

krb5: telnet client and server encrypt_keyid heap-based buffer overflow

Buffer overflow in libtelnet/encrypt.c in telnetd in FreeBSD 7.3 through 9.0, MIT Kerberos Version 5 Applications aka krb5-appl 1.0.2 and earlier, Heimdal 1.5.1 and earlier, GNU inetutils, and possibly other products allows remote attackers to execute arbitrary code via a long encryption key, as...

10CVSS6.6AI score0.95104EPSS
Exploits19References4
RedHat Linux
RedHat Linux
added 2007/04/03 6:20 p.m.9 views

Unauthorized access via krb5-telnet daemon

The telnet daemon telnetd in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue to CVE-2007-0882...

10CVSS7.3AI score0.29842EPSS
Exploits1References4
CERT
CERT
added 2002/02/04 12:0 a.m.15 views

Kerberos Telnet protocol does not adequately protect authentication and encryption options

Overview A vulnerability exists in the Telnet Authentication Option and Telnet Data Encryption Option specifications. An ordered list of authentication and encryption options sent from the server to client during negotiation is not cryptographically protected. As a result, an attacker may be able...

7AI score
Exploits0References10
NVD
NVD
added 2001/08/27 4:0 a.m.21 views

CVE-2001-1444

The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V Heimdal, does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack...

7.5CVSS6.8AI score0.01296EPSS
Exploits1References3
Rows per page
Query Builder