Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Kerberos_5
(Mit)| Repositories | https://github.com/krb5/krb5 |
| #Vulnerabilities | 134 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-06-09 | CVE-2000-0549 | Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5 | N/A | ||
| 2000-05-16 | CVE-2000-0392 | Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0391 | Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0390 | Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0389 | Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 1997-04-29 | CVE-1999-1296 | Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable. | Kerberos_5 | N/A | ||
| 1999-06-11 | CVE-1999-0713 | The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges. | Cde, Unix, Kerberos_5, Afs | N/A | ||
| 2002-11-04 | CVE-2002-1235 | The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack. | Debian_linux, Kth_kerberos_4, Kth_kerberos_5, Kerberos_5 | N/A | ||
| 2007-12-06 | CVE-2007-5971 | Double free vulnerability in the gss_krb5int_make_seal_token_v3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors. | Kerberos_5 | N/A | ||
| 2007-12-06 | CVE-2007-5901 | Use-after-free vulnerability in the gss_indicate_mechs function in lib/gssapi/mechglue/g_initialize.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code. | Kerberos_5 | N/A |