Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mit kerberos 4 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-36222
ec_verify in kdc/kdc_preauth_ec.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) prior to 1.18.4 and 1.19.x prior to 1.19.2 allows remote malicious users to cause a NULL pointer dereference and daemon crash. This occurs because a return value is not properly ma...
Mit Kerberos 5
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Netapp Oncommand Insight -
Netapp Oncommand Workflow Automation -
Netapp Snapcenter -
Oracle Mysql Server
1 Github repository
5
CVSSv2
CVE-2020-28196
MIT Kerberos 5 (aka krb5) prior to 1.17.2 and 1.18.x prior to 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit.
Mit Kerberos 5
Fedoraproject Fedora 31
Netapp Cloud Backup -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Oracle Communications Offline Mediation Controller 12.0.0.3.0
Oracle Mysql Server
Oracle Communications Pricing Design Center 12.0.0.3.0
Oracle Communications Cloud Native Core Policy 1.14.0
5
CVSSv2
CVE-2009-0845
The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 up to and including 1.6.3, when SPNEGO is used, allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via invalid Contex...
Mit Kerberos 5 1.5.2
Mit Kerberos 5 1.5.1
Mit Kerberos 5 1.5
Mit Kerberos 5 1.6.2
Mit Kerberos 5 1.6.1
Mit Kerberos 5 1.6
Mit Kerberos 5 1.5.3
Mit Kerberos 5-1.6.3
5
CVSSv2
CVE-2005-1174
MIT Kerberos 5 (krb5) 1.3 up to and including 1.4.1 Key Distribution Center (KDC) allows remote malicious users to cause a denial of service (application crash) via a certain valid TCP connection that causes a free of unallocated memory.
Mit Kerberos 5 1.3.4
Mit Kerberos 5 1.3.5
Mit Kerberos 5 1.3
Mit Kerberos 5 1.3.1
Mit Kerberos 5 1.4.1
Mit Kerberos 5 1.3.2
Mit Kerberos 5 1.3.3
Mit Kerberos 5 1.3.6
Mit Kerberos 5 1.4
5
CVSSv2
CVE-2002-1146
The BIND 4 and BIND 8.2.x stub resolver libraries, and other libraries such as glibc 2.2.5 and previous versions, libc, and libresolv, use the maximum buffer size instead of the actual size when processing a DNS response, which causes the stub resolvers to read past the actual bo...
Gnu Glibc
5
CVSSv2
CVE-2000-0550
Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote malicious users to cause a denial of service.
Cygnus Cygnus Network Security 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 4.0
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
Mit Kerberos 5 1.0
5
CVSSv2
CVE-2000-0546
Buffer overflow in Kerberos 4 KDC program allows remote malicious users to cause a denial of service via the lastrealm variable in the set_tgtkey function.
Cygnus Network Security Project Cygnus Network Security -
Kerbnet Project Kerbnet -
Mit Kerberos
Mit Kerberos 4.0
Mit Kerberos 5
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
5
CVSSv2
CVE-2000-0547
Buffer overflow in Kerberos 4 KDC program allows remote malicious users to cause a denial of service via the localrealm variable in the process_v4 function.
Cygnus Network Security Project Cygnus Network Security -
Kerbnet Project Kerbnet -
Mit Kerberos
Mit Kerberos 4.0
Mit Kerberos 5
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
5
CVSSv2
CVE-2000-0548
Buffer overflow in Kerberos 4 KDC program allows remote malicious users to cause a denial of service via the e_msg variable in the kerb_err_reply function.
Cygnus Network Security Project Cygnus Network Security -
Kerbnet Project Kerbnet -
Mit Kerberos
Mit Kerberos 4.0
Mit Kerberos 5
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
5
CVSSv2
CVE-2000-0549
Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote malicious users to cause a denial of service via a malformed request.
Cygnus Cygnus Network Security 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 4.0
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
Mit Kerberos 5 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »