Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mit kerberos 5-1.8 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0628
The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in the SPNEGO GSS-API functionality in MIT Kerberos 5 (aka krb5) 1.7 prior to 1.7.2 and 1.8 prior to 1.8.1 allows remote malicious users to cause a denial of service (assertion failure and daemon crash)...
Mit Kerberos 5 1.7.1
Mit Kerberos 5 1.8
Mit Kerberos 5 1.7
NA
CVE-2010-0283
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 prior to 1.7.2, and 1.8 alpha, allows remote malicious users to cause a denial of service (assertion failure and daemon crash) via an invalid (1) AS-REQ or (2) TGS-REQ request.
Mit Kerberos 5 1.7.1
Mit Kerberos 5-1.8
Mit Kerberos 5 1.7
NA
CVE-2010-4022
The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote malicious users to cause a de...
Mit Kerberos 5 1.7
Mit Kerberos 5 1.8
Mit Kerberos 5 1.9
6.3
CVSSv3
CVE-2010-4020
MIT Kerberos 5 (aka krb5) 1.8.x up to and including 1.8.3 does not reject RC4 key-derivation checksums, which might allow remote authenticated users to forge a (1) AD-SIGNEDPATH or (2) AD-KDC-ISSUED signature, and possibly gain privileges, by leveraging the small key space that r...
Mit Kerberos 5 1.8
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.8.2
NA
CVE-2010-1320
Double free vulnerability in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x prior to 1.8.2 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a request associated wit...
Mit Kerberos 5 1.8
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.7
Mit Kerberos 5 1.7.1
1 EDB exploit
NA
CVE-2010-1322
The merge_authdata function in kdc_authdata.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8.x prior to 1.8.4 does not properly manage an index into an authorization-data list, which allows remote malicious users to cause a denial of service (daemon crash),...
Mit Kerberos 5 1.8
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.8.2
NA
CVE-2011-4151
The krb5_db2_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 up to and including 1.8.4, when the db2 (aka Berkeley DB) back end is used, allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via...
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.8
Mit Kerberos 5 1.8.4
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8.2
3.7
CVSSv3
CVE-2010-1324
MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x up to and including 1.8.3 does not properly determine the acceptability of checksums, which might allow remote malicious users to forge GSS tokens, gain privileges, or have unspecified other impact via (1) an unkeyed checksum, (2) an unke...
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.7.1
Mit Kerberos 5 1.7
Mit Kerberos 5 1.8.2
Mit Kerberos 5 1.8
NA
CVE-2011-1528
The krb5_ldap_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 up to and including 1.8.4 and 1.9 up to and including 1.9.1, when the LDAP back end is used, allows remote malicious users to cause a denial of service (assertion failure an...
Mit Kerberos 5 1.8.4
Mit Kerberos 5 1.8.2
Mit Kerberos 5 1.8
Mit Kerberos 5 1.9.1
Mit Kerberos 5 1.9
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8.1
NA
CVE-2011-1529
The lookup_lockout_policy function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 up to and including 1.8.4 and 1.9 up to and including 1.9.1, when the db2 (aka Berkeley DB) or LDAP back end is used, allows remote malicious users to cause a denial of servic...
Mit Kerberos 5 1.8.2
Mit Kerberos 5 1.8.1
Mit Kerberos 5 1.9
Mit Kerberos 5 1.8.4
Mit Kerberos 5 1.8.3
Mit Kerberos 5 1.8
Mit Kerberos 5 1.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »