Vulnerabilities (CVE)

Vendor filter

Mit Subscribe

Filter

139 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-14844 3 Mit, Fedoraproject, Redhat 3 Kerberos, Fedora, Enterprise Linux 2019-10-09 5.0
A flaw was found in, Fedora versions of krb5 from 1.16.1 to, including 1.17.x, in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 "enctypes". A remote unauthenticated user could use this flaw to crash the KDC.
CVE-2017-7562 2 Mit, Redhat 5 Kerberos, Enterprise Linux, Enterprise Linux Desktop and 2 more 2019-10-09 4.0
An authentication bypass flaw was found in the way krb5's certauth interface before 1.16.1 handled the validation of client certificates. A remote attacker able to communicate with the KDC could potentially use this flaw to impersonate arbitrary...
CVE-2017-15088 1 Mit 1 Kerberos 2019-10-09 7.5
plugins/preauth/pkinit/pkinit_crypto_openssl.c in MIT Kerberos 5 (aka krb5) through 1.15.2 mishandles Distinguished Name (DN) fields, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and...
CVE-2017-11368 2 Mit, Fedoraproject 2 Kerberos, Fedora 2019-10-03 4.0
In MIT Kerberos 5 (aka krb5) 1.7 and later, an authenticated attacker can cause a KDC assertion failure by sending invalid S4U2Self or S4U2Proxy requests.
CVE-2018-20217 2 Mit, Debian 2 Kerberos, Debian Linux 2019-10-03 3.5
A Reachable Assertion issue was discovered in the KDC in MIT Kerberos 5 (aka krb5) before 1.17. If an attacker can obtain a krbtgt ticket using an older encryption type (single-DES, triple-DES, or RC4), the attacker can crash the KDC by making an...
CVE-2018-5730 4 Mit, Fedoraproject, Debian and 1 more 6 Kerberos, Fedora, Debian Linux and 3 more 2019-04-26 5.5
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to circumvent a DN containership check by supplying both a "linkdn" and "containerdn" database argument, or by supplying a DN...
CVE-2018-5729 4 Fedoraproject, Mit, Debian and 1 more 6 Fedora, Kerberos, Debian Linux and 3 more 2019-04-26 6.5
MIT krb5 1.6 or later allows an authenticated kadmin with permission to add principals to an LDAP Kerberos database to cause a denial of service (NULL pointer dereference) or bypass a DN container check by supplying tagged data that is internal...
CVE-2016-3119 4 Mit, Novell, Opensuse Project and 1 more 5 Leap, Opensuse, Kerberos and 2 more 2018-10-30 3.5
The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated...
CVE-2001-0554 8 Freebsd, Sgi, Ibm and 5 more 9 Aix, Solaris, Kerberos and 6 more 2018-10-30 10.0
Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function.
CVE-2003-0028 10 Freebsd, Sgi, Ibm and 7 more 13 Hp-ux, Hp-ux Series 700, Aix and 10 more 2018-10-30 7.5
Integer overflow in the xdrmem_getbytes() function, and possibly other functions, of XDR (external data representation) libraries derived from SunRPC, including libnsl, libc, glibc, and dietlibc, allows remote attackers to execute arbitrary code...
CVE-1999-0143 3 Mit, Process Software, Sun 4 Multinet, Solaris, Kerberos and 1 more 2018-10-30 4.6
Kerberos 4 key servers allow a user to masquerade as another by breaking and generating session keys.
CVE-2003-0058 2 Mit, Sun 4 Enterprise Authentication Mechanism, Solaris, Kerberos and 1 more 2018-10-30 5.0
MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allows remote authenticated attackers to cause a denial of service (crash) on KDCs within the same realm via a certain protocol request that causes a null dereference.
CVE-2004-0523 4 Mit, Tinysofa, Sun and 1 more 6 Propack, Tinysofa Enterprise Server, Seam and 3 more 2018-10-30 10.0
Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.
CVE-2005-0488 3 Mit, Microsoft, Sun 4 Telnet Client, Solaris, Kerberos and 1 more 2018-10-30 5.0
Certain BSD-based Telnet clients, including those used on Solaris and SuSE Linux, allow remote malicious Telnet servers to read sensitive environment variables via the NEW-ENVIRON option with a SEND ENV_USERVAR command.
CVE-2005-1689 1 Mit 1 Kerberos 2018-10-19 7.5
Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.
CVE-2003-0139 1 Mit 1 Kerberos 2018-10-19 7.5
Certain weaknesses in the implementation of version 4 of the Kerberos protocol (krb4) in the krb5 distribution, when triple-DES keys are used to key krb4 services, allow an attacker to create krb4 tickets for unauthorized principals using a...
CVE-2003-0138 1 Mit 1 Kerberos 2018-10-19 7.5
Version 4 of the Kerberos protocol (krb4), as used in Heimdal and other packages, allows an attacker to impersonate any principal in a realm via a chosen-plaintext attack.
CVE-2003-0082 1 Mit 1 Kerberos 2018-10-19 5.0
The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its...
CVE-2003-0072 1 Mit 1 Kerberos 2018-10-19 5.0
The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes an out-of-bounds read...
CVE-2006-3084 2 Mit, Heimdal 2 Heimdal, Kerberos 2018-10-18 7.2
The (1) ftpd and (2) ksu programs in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to...