Lucene search

K

7 matches found

CVE
CVE
added 2022/12/25 6:15 a.m.1081 views

CVE-2022-42898

PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of serv...

8.8CVSS9.2AI score0.08742EPSS
CVE
CVE
added 2017/07/13 1:29 p.m.569 views

CVE-2017-11103

Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification. In _krb5_extract_ticket() the KDC-REP service name must be obtained from the encrypted version store...

8.1CVSS7.9AI score0.05766EPSS
CVE
CVE
added 2022/12/26 5:15 a.m.263 views

CVE-2021-44758

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

7.5CVSS8.1AI score0.00325EPSS
CVE
CVE
added 2022/12/25 5:15 a.m.258 views

CVE-2022-44640

Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC).

9.8CVSS9.6AI score0.01956EPSS
CVE
CVE
added 2019/05/15 11:29 p.m.250 views

CVE-2019-12098

In the client side of Heimdal before 7.6.0, failure to verify anonymous PKINIT PA-PKINIT-KX key exchange permits a man-in-the-middle attack. This issue is in krb5_init_creds_step in lib/krb5/init_creds_pw.c.

7.4CVSS6.9AI score0.03731EPSS
CVE
CVE
added 2022/11/15 11:15 p.m.161 views

CVE-2022-41916

Heimdal is an implementation of ASN.1/DER, PKIX, and Kerberos. Versions prior to 7.7.1 are vulnerable to a denial of service vulnerability in Heimdal's PKI certificate validation library, affecting the KDC (via PKINIT) and kinit (via PKINIT), as well as any third-party applications using Heimdal's ...

7.5CVSS7.2AI score0.00232EPSS
CVE
CVE
added 2004/07/07 4:0 a.m.82 views

CVE-2004-0434

k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow.

10CVSS9.7AI score0.22372EPSS