Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:11844
HistoryJan 15, 2019 - 9:08 a.m.

Denial Of Service (DoS)

2019-01-1509:08:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

EPSS

0.014

Percentile

86.7%

JSON

sssd is vulnerable to denial of service (DoS) attacks. The vulnerability exists as a memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause a denial of service (memory consumption) via a large number of logins that trigger parsing of PAC blobs during Kerberos authentication.

References

Related

fedora 3
debiancve 1
amazon 1
openvas 7
nessus 13
centos 2
redhat 2
oraclelinux 2
f5 1
cve 1
prion 1
ubuntucve 1
cvelist 1
nvd 1
fedora
fedora
[SECURITY] Fedora 22 Update: sssd-1.13.1-2.fc22
2015-10-20 01:56:37
[SECURITY] Fedora 21 Update: sssd-1.12.5-4.fc21
2015-10-20 02:54:52
[SECURITY] Fedora 23 Update: sssd-1.13.1-2.fc23
2015-10-11 16:08:12
debiancve
debiancve
CVE-2015-5292
2015-10-29 16:59:00
amazon
amazon
Low: sssd
2016-01-18 11:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2015-2019)
2015-11-11 00:00:00
CentOS Update for libipa_hbac CESA-2015:2019 centos6
2015-11-11 00:00:00
Oracle: Security Advisory (ELSA-2015-2355)
2015-11-25 00:00:00
nessus
nessus
Scientific Linux Security Update : sssd on SL7.x x86_64 (20151119)
2015-12-22 00:00:00
CentOS 7 : sssd (CESA-2015:2355)
2015-12-02 00:00:00
Scientific Linux Security Update : sssd on SL6.x i386/x86_64 (20151110)
2015-11-11 00:00:00
centos
centos
libipa_hbac, libsss_idmap, libsss_nss_idmap, libsss_simpleifp, python, sssd security update
2015-11-10 13:43:26
libipa_hbac, libsss_idmap, libsss_nss_idmap, libsss_simpleifp, python, sssd security update
2015-11-30 19:52:40
redhat
redhat
(RHSA-2015:2019) Low: sssd security and bug fix update
2015-11-10 00:00:00
(RHSA-2015:2355) Low: sssd security, bug fix, and enhancement update
2015-11-19 13:37:40
oraclelinux
oraclelinux
sssd security and bug fix update
2015-11-10 00:00:00
sssd security, bug fix, and enhancement update
2015-11-24 00:00:00
f5
f5
K48523069 : System Security Services Daemon vulnerability CVE-2015-5292
2017-09-13 00:00:00
cve
cve
CVE-2015-5292
2015-10-29 16:59:00
prion
prion
Authentication flaw
2015-10-29 16:59:00
ubuntucve
ubuntucve
CVE-2015-5292
2015-10-29 00:00:00
cvelist
cvelist
CVE-2015-5292
2015-10-29 16:00:00
nvd
nvd
CVE-2015-5292
2015-10-29 16:59:00

EPSS

0.014

Percentile

86.7%

JSON
Related for VERACODE:11844
fedora3debiancve1amazon1openvas7nessus13centos2redhat2oraclelinux2f51cve1prion1ubuntucve1cvelist1nvd1