Heimdal Security Vulnerabilities and Issues — Heimdal CVE List

Lucene search

KthHeimdal

6 matches found

CVE•added 2006/02/14 11:6 a.m.•53 views

CVE-2006-0677

telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference.

7.8CVSS6.3AI score0.07878EPSS

CVE•added 2006/02/08 1:2 a.m.•49 views

CVE-2006-0582

Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors.

2.1CVSS6.2AI score0.00085EPSS

CVE•added 2002/10/28 5:0 a.m.•40 views

CVE-2002-1226

Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225).

10CVSS7.1AI score0.01481EPSS

CVE•added 2002/10/28 5:0 a.m.•39 views

CVE-2002-1225

Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access.

10CVSS6.9AI score0.01481EPSS

CVE•added 2003/04/02 5:0 a.m.•38 views

CVE-2002-0754

Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.

7.2CVSS6.9AI score0.00056EPSS

CVE•added 2004/05/04 4:0 a.m.•35 views

CVE-2004-0371

Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path.

5CVSS6.3AI score0.00647EPSS