Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kerberos 5 vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-2006-3084
The (1) ftpd and (2) ksu programs in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x prior to 1.4.4, and (b) Heimdal 0.7.2 and previous versions, do not check return codes for setuid calls, which might allow local users to gain privileges by causing setuid to fail to drop privileg...
Mit Kerberos 5 1.5
Heimdal Heimdal
Mit Kerberos 5 1.4
Mit Kerberos 5 1.4.1
Mit Kerberos 5 1.4.2
Mit Kerberos 5 1.4.3
641
VMScore
CVE-2004-1189
The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds er...
Mit Kerberos 5
641
VMScore
CVE-2002-0755
Kerberos 5 su (k5su) in FreeBSD 4.5 and previous versions does not verify that a user is a member of the wheel group before granting superuser privileges, which could allow unauthorized users to execute commands as root.
Freebsd Freebsd 4.5
Freebsd Freebsd 4.4
641
VMScore
CVE-2002-0754
Kerberos 5 su (k5su) in FreeBSD 4.4 and previous versions relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.
Freebsd Heimdal 0.4e
Kth Heimdal 0.4e
Freebsd Freebsd 4.0
Freebsd Freebsd 4.1
Freebsd Freebsd 4.1.1
Freebsd Freebsd 4.2
Freebsd Freebsd 4.3
Freebsd Freebsd 4.4
641
VMScore
CVE-2000-0392
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.
Cygnus Cygnus Network Security 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 4.0
Mit Kerberos 5 1.0
Mit Kerberos 5 1.1.1
Redhat Linux 6.2
641
VMScore
CVE-1999-0713
The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges.
Mit Kerberos 5 -
Cde Cde
Transarc Afs
Digital Unix
641
VMScore
CVE-1999-1296
Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable.
Mit Kerberos 5 1.5.2
632
VMScore
CVE-2015-2696
lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) prior to 1.14 relies on an inappropriate context handle, which allows remote malicious users to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mishandled during a gss_i...
Mit Kerberos 5
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Suse Linux Enterprise Desktop 12
Suse Linux Enterprise Server 12
Suse Linux Enterprise Software Development Kit 12
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 15.10
632
VMScore
CVE-2012-4643
The DHCP server on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 7.0 prior to 7.2(5.8), 7.1 prior to 7.2(5.8), 7.2 prior to 7.2(5.8), 8.0 prior to 8.0(5.28), 8.1 prior to 8.1(...
Cisco Adaptive Security Appliance Software 7.0
Cisco Adaptive Security Appliance Software 7.0\\(0\\)
Cisco Adaptive Security Appliance Software 7.0\\(1\\)
Cisco Adaptive Security Appliance Software 7.0\\(2\\)
Cisco Adaptive Security Appliance Software 7.0\\(4\\)
Cisco Adaptive Security Appliance Software 7.0\\(5\\)
Cisco Adaptive Security Appliance Software 7.0\\(5.2\\)
Cisco Adaptive Security Appliance Software 7.1
Cisco Adaptive Security Appliance Software 7.1\\(2\\)
Cisco Adaptive Security Appliance Software 7.1\\(2.5\\)
Cisco Adaptive Security Appliance Software 7.1\\(2.27\\)
Cisco Adaptive Security Appliance Software 7.1\\(2.48\\)
Cisco Adaptive Security Appliance Software 7.1\\(2.49\\)
Cisco Adaptive Security Appliance Software 7.1\\(5\\)
Cisco Adaptive Security Appliance Software 7.2
Cisco Adaptive Security Appliance Software 7.2\\(1\\)
Cisco Adaptive Security Appliance Software 7.2\\(1.22\\)
Cisco Adaptive Security Appliance Software 7.2\\(2\\)
Cisco Adaptive Security Appliance Software 7.2\\(2.5\\)
Cisco Adaptive Security Appliance Software 7.2\\(2.7\\)
Cisco Adaptive Security Appliance Software 7.2\\(2.8\\)
Cisco Adaptive Security Appliance Software 7.2\\(2.10\\)
632
VMScore
CVE-2012-4659
The AAA functionality in the IPv4 SSL VPN implementations on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 8.2 prior to 8.2(5.30) and 8.3 prior to 8.3(2.34) allows remote mali...
Cisco Adaptive Security Appliance Software 8.2
Cisco Adaptive Security Appliance Software 8.2\\(1\\)
Cisco Adaptive Security Appliance Software 8.2\\(2\\)
Cisco Adaptive Security Appliance Software 8.2\\(3\\)
Cisco Adaptive Security Appliance Software 8.2\\(3.9\\)
Cisco Adaptive Security Appliance Software 8.2\\(4\\)
Cisco Adaptive Security Appliance Software 8.2\\(4.1\\)
Cisco Adaptive Security Appliance Software 8.2\\(4.4\\)
Cisco Adaptive Security Appliance Software 8.2\\(5\\)
Cisco Adaptive Security Appliance Software 8.3\\(1\\)
Cisco Adaptive Security Appliance Software 8.3\\(2\\)
Cisco 5500 Series Adaptive Security Appliance
Cisco Catalyst 6500
Cisco Catalyst 6503-e -
Cisco Catalyst 6504-e -
Cisco Catalyst 6506-e -
Cisco Catalyst 6509-e -
Cisco Catalyst 6509-neb-a -
Cisco Catalyst 6509-v-e -
Cisco Catalyst 6513 -
Cisco Catalyst 6513-e -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »