12 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-3326
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pamkrb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket tgt from the Kerberos KDC Key Distribution Center...
SUSE CVE-2008-3825
pamkrb5 2.2.14 in Red Hat Enterprise Linux RHEL 5 and earlier, when the existingticket option is enabled, uses incorrect privileges when reading a Kerberos credential cache, which allows local users to gain privileges by setting the KRB5CCNAME environment variable to an arbitrary cache filename a...
SUSE: Security Advisory (SUSE-SU-2022:2307-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:2307-1 Security update for ldb, samba
This update for ldb, samba fixes the following issues: ldb was updated to version 2.4.2 to fix: + Fix for CVE-2021-3670, ensure that the LDB request has not timed out during filter processing as the LDAP server MaxQueryDuration is otherwise not honoured. samba was updated to fix: - Revert NIS...
samba bug fix and enhancement update
An update is available for samba. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Samba is an open-source implementation of the Server Message Block SMB protocol...
samba bug fix and enhancement update
An update is available for samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Samba is an open-source implementation of the Server Message Block SMB protocol...
pam-krb5 buffer overflow vulnerability
pam-krb5 is a PAM module for Kerberos authentication. A buffer overflow vulnerability exists in pam-krb5 versions prior to 4.9, which stems from an incorrect boundary check. A remote attacker can exploit this vulnerability to execute arbitrary code on an affected system with the help of a special...
CVE-2020-10595
CVE-2020-10595 affects the pam-krb5 PAM module. The issue is a buffer overflow in pam_krb5.so when the Kerberos library performs supplemental prompting (e.g., PKINIT or no_prompt PAM options). This can overflow a buffer provided by the underlying Kerberos library, potentially leading to heap/stac...
The vulnerability of the CentOS operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the pamkrb5-2.6.14 package of the CentOS operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out locally...
HP-UX Update for PAM Kerberos HPSBUX02415
Check for the Version of PAM Kerberos OpenVAS Vulnerability Test HP-UX Update for PAM Kerberos HPSBUX02415 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
HP-UX Update for PAM Kerberos HPSBUX02415
Check for the Version of PAM Kerberos OpenVAS Vulnerability Test HP-UX Update for PAM Kerberos HPSBUX02415 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
pam-krb5 security advisory (3.12 and earlier)
pam-krb5 security vulnerability Vulerability type: Local privilege escalation, local file overwrite Versions affected: All versions prior to 3.13 Versions fixed: 3.13 and later Reported: 2009-01-29 Public announcement: 2009-02-11 CVE IDs: CVE-2009-0360, CVE-2009-0361 A security vulnerability in...