Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

kth kth kerberos 5 vulnerabilities and exploits

(subscribe to this query)
668
VMScore
CVE-2001-1444
The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote malicious users to downgrade authentication and encryption mechanisms via a man-in-the-middle...
Kth Kth Kerberos 4Kth Kth Kerberos 5
445
VMScore
CVE-2001-1443
KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote malicious users to read communications via a man-in-the-middle attack.
Kth Kth Kerberos 4Kth Kth Kerberos 5
890
VMScore
CVE-2002-1235
The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and previous versions, (2) kadmind in KTH Kerberos 4 (eBones) prior to 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) prior to 0.5.1 when comp...
Kth Kth Kerberos 4Kth Kth Kerberos 5Mit Kerberos 5Debian Debian Linux 3.0
187
VMScore
CVE-2006-0582
Unspecified vulnerability in rshd in Heimdal 0.6.x prior to 0.6.6 and 0.7.x prior to 0.7.2, when storing forwarded credentials, allows malicious users to overwrite arbitrary files and change file ownership via unknown vectors.
Kth Heimdal 0.6.2Kth Heimdal 0.6.3Kth Heimdal 0.6.1Kth Heimdal 0.7.1.2Kth Heimdal 0.7.1.3Kth Heimdal 0.6.4Kth Heimdal 0.6.5Kth Heimdal 0.7.1Kth Heimdal 0.7.1.1
694
VMScore
CVE-2006-0677
telnetd in Heimdal 0.6.x prior to 0.6.6 and 0.7.x prior to 0.7.2 allows remote unauthenticated malicious users to cause a denial of service (server crash) via unknown vectors that trigger a null dereference.
Kth Heimdal 0.7.1Kth Heimdal 0.7.1.1Kth Heimdal 0.6.1Kth Heimdal 0.7.1.2Kth Heimdal 0.7.1.3Kth Heimdal 0.6.4Kth Heimdal 0.6.5Kth Heimdal 0.6.2Kth Heimdal 0.6.3
641
VMScore
CVE-2002-0754
Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Freebsd Heimdal 0.4eKth Heimdal 0.4eFreebsd Freebsd 4.0Freebsd Freebsd 4.1Freebsd Freebsd 4.1.1Freebsd Freebsd 4.2Freebsd Freebsd 4.3Freebsd Freebsd 4.4
445
VMScore
CVE-2002-1146
The BIND 4 and BIND 8.2.x stub resolver libraries, and other libraries such as glibc 2.2.5 and previous versions, libc, and libresolv, use the maximum buffer size instead of the actual size when processing a DNS response, which causes the stub resolvers to read past the actual bo...
Gnu Glibc
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook