6.5 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.895 High
EPSS
Percentile
98.7%
Jeff Blaine, Radoslav Bodo, Jakob Haufe, and Jorgen Wahlsten discovered
that the Kerberos Key Distribution Center service did not correctly verify
certain network traffic. An unauthenticated remote attacker could send
a specially crafted request that would cause the KDC to crash, leading
to a denial of service.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | krb5-kdc | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-admin-server | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-clients | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-ftpd | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-kdc-ldap | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-pkinit | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-rsh-server | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-telnetd | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | krb5-user | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |
Ubuntu | 9.10 | noarch | libgssapi-krb5-2 | <Β 1.7dfsg~beta3-1ubuntu0.1 | UNKNOWN |