Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Kerberos_5
(Mit)| Repositories | https://github.com/krb5/krb5 |
| #Vulnerabilities | 139 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-06-18 | CVE-2001-0247 | Buffer overflows in BSD-based FTP servers allows remote attackers to execute arbitrary commands via a long pattern string containing a {} sequence, as seen in (1) g_opendir, (2) g_lstat, (3) g_stat, and (4) the glob0 buffer as used in the glob functions glob2 and glob3. | Freebsd, Kerberos_5, Netbsd, Openbsd, Irix | N/A | ||
| 2000-06-09 | CVE-2000-0550 | Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5 | N/A | ||
| 2000-06-09 | CVE-2000-0549 | Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5 | N/A | ||
| 2000-05-16 | CVE-2000-0392 | Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0391 | Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0390 | Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 2000-05-16 | CVE-2000-0389 | Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges. | Cygnus_network_security, Kerbnet, Kerberos, Kerberos_5, Linux | N/A | ||
| 1997-04-29 | CVE-1999-1296 | Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable. | Kerberos_5 | N/A | ||
| 1999-06-11 | CVE-1999-0713 | The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges. | Cde, Unix, Kerberos_5, Afs | N/A | ||
| 2002-11-04 | CVE-2002-1235 | The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack. | Debian_linux, Kth_kerberos_4, Kth_kerberos_5, Kerberos_5 | N/A |