Kerberos 5@1.2.1 Security Vulnerabilities and Issues — Kerberos 5@1.2.1 CVE List

Lucene search

MitKerberos 51.2.1

4 matches found

CVE•added 2004/08/18 4:0 a.m.•62 views

CVE-2004-0523

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.

10CVSS9.8AI score0.13596EPSS

CVE•added 2004/09/01 4:0 a.m.•52 views

CVE-2003-0059

Unknown vulnerability in the chk_trans.c of the libkrb5 library for MIT Kerberos V5 before 1.2.5 allows users from one realm to impersonate users in other realms that have the same inter-realm keys.

7.5CVSS9.4AI score0.03221EPSS

CVE•added 2004/09/01 4:0 a.m.•48 views

CVE-2002-0036

Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value.

5CVSS9.1AI score0.1901EPSS

CVE•added 2004/09/01 4:0 a.m.•43 views

CVE-2003-0058

MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allows remote authenticated attackers to cause a denial of service (crash) on KDCs within the same realm via a certain protocol request that causes a null dereference.

5CVSS8.7AI score0.19337EPSS