Plaintext Modification

libkrb5.so is vulnerable to a Plaintext Modification attack. The vulnerability is due to improper modifications in the plaintext Extra Count field of a confidential GSS krb5 wrap token, allowing an attacker to make an unwrapped token appear truncated to the application...

Buffer Overflow

libkrb5.so is vulnerable to Buffer Overflows. A buffer overflow in the RPC library can be exploited by remote attackers to cause a denial of service or an arbitrary code execution. This vulnerability is only exploitable on systems whose unistd.h header file which does not define the FDSETSIZE mac...

Double Free

libkrb5.so is vulnerable to Double Free. The vulnerability exists due to a failure in authorization data handling in the dotgsreq.c, which allows an attacker to cause the Key Distribution Center KDC to free the same pointer twice when incorrect data is copied from one ticket to another...

Denial Of Service (DoS)

libkrb5.so is vulnerable to denial of service DoS attacks. The vulnerability exists in the krb5gssprocesscontexttoken function of lib/gssapi/krb5/processcontexttoken.c where a terminated security-context handle could be used by authenticated users to cause a Denial of Service DoS attack...

Denial Of Service (DoS)

libkrb5.so is vulnerable to denial of service DoS attacks. The vulnerability exists in the krb5encodekrbsecretkey function of plugins/kdb/ldap/libkdbldap/ldapprincipal2.c where authenticated users can cause DoS attacks through a series of cpw -keepold commands...

Denial Of Service (DoS)

libkrb5.so is vulnerable to denial of service DoS attacks. The vulnerability exists in the krb5encodekrbsecretkey function of plugins/kdb/ldap/libkdbldap/ldapprincipal2.c where authenticated users can cause DoS attacks through a series of cpw -keepold commands...

Denial Of Service (DoS)

libkrb5.so is vulnerable to denial of service DoS attacks. The vulnerability exists in the krb5gssprocesscontexttoken function of lib/gssapi/krb5/processcontexttoken.c where a terminated security-context handle could be used by authenticated users to cause a Denial of Service DoS attack...

Authentication Bypass

libkrb5.so is vulnerable to authentication bypasses. A malicious user can pass a forged krb cert with the right EKU when no SANs is used as no relationship is established between a user and the certificate...

Container Check Bypass

libkrb5.so is vulnerable to checking bypass. It can be done when an authenticated kadmin user with permissions to add principals to an LDAP Kerberos database provides both a linkdn and containerd database argument, or by providing a DN string which is a left extension of a container DN string but...

Denial Of Service (DoS) Through Null Pointer Dereference

libkrb5.so is vulnerable to denial of service DoS through null pointer dereference attacks. The vulnerability exists as a null pointer dereference issue can be caused in kadm5createprincipal3 of svrprincipal.c, leading up to a denial of service DoS...

Denial Of Service (DoS)

libkrb5.so is vulnerable to denial of service DoS through buffer overflow attacks. The vulnerability exists in the getmatchingdata function of krb5 that includes certauth plugin, and subsequently allowing both the CA certificate and the user's certificate to have long subjects, causing a denial o...