Lucene search

K
MitKerberos 51.10.1

4 matches found

CVE
CVE
added 2012/08/06 4:55 p.m.69 views

CVE-2012-1014

The process_as_req function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.10.x before 1.10.3 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (uninitialized pointer dereference and daemon crash) or possibly execute arbi...

9CVSS7.8AI score0.01844EPSS
CVE
CVE
added 2012/06/07 7:55 p.m.62 views

CVE-2012-1013

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create req...

4CVSS5.9AI score0.01108EPSS
CVE
CVE
added 2012/08/06 4:55 p.m.62 views

CVE-2012-1015

The kdc_handle_protected_negotiation function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x before 1.9.5, and 1.10.x before 1.10.3 attempts to calculate a checksum before verifying that the key type is appropriate for a checksum, which allows remote attackers to exe...

9.3CVSS7.6AI score0.03103EPSS
CVE
CVE
added 2012/06/07 7:55 p.m.45 views

CVE-2012-1012

server/server_stubs.c in the kadmin protocol implementation in MIT Kerberos 5 (aka krb5) 1.10 before 1.10.1 does not properly restrict access to (1) SET_STRING and (2) GET_STRINGS operations, which might allow remote authenticated administrators to modify or read string attributes by leveraging the...

5.5CVSS6AI score0.00189EPSS