Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kerberos vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2008-5354
Stack-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions; JDK and JRE 5.0 Update 16 and previous versions; and SDK and JRE 1.4.2_18 and previous versions allows locally-launched and possibly remote untrusted Java applicat...
Sun Jdk 6
Sun Jre 6
Sun Jre 5.0
Sun Jdk 5.0
Sun Sdk
Sun Jre 1.4.2 17
Sun Sdk 1.4.2 14
Sun Jre 1.4.2 13
Sun Sdk 1.4.2 10
Sun Sdk 1.4.2 16
Sun Jre 1.4.2 15
Sun Sdk 1.4.2 12
Sun Jre 1.4.2 11
Sun Sdk 1.4.2 8
Sun Jre 1.4.2 7
Sun Sdk 1.4.2 7
Sun Jre 1.4.2 3
Sun Sdk 1.4.2 3
Sun Jdk
Sun Jre
Sun Jre 1.4.2 9
Sun Jre 1.4.2 5
828
VMScore
CVE-2008-5358
Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions might allow remote malicious users to execute arbitrary code via a crafted GIF file that triggers memory corruption during display of the splash screen, possibly related to splashscreen.dll.
Sun Jre 6
Sun Jdk 6
Sun Jdk
Sun Jre
828
VMScore
CVE-2008-5359
Buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions; JDK and JRE 5.0 Update 16 and previous versions; SDK and JRE 1.4.2_18 and previous versions; and SDK and JRE 1.3.1_23 and previous versions might allow remote malicious users ...
Sun Jre 1.6.0
Sun Jre 1.5.0
Sun Jre 1.4.2 3
Sun Jre 1.4.2 4
Sun Jre 1.4.2 5
Sun Jre 1.4.2 6
Sun Jre 1.4.2 7
Sun Jre 1.3.1 2
Sun Jre 1.3.1 03
Sun Jre 1.3.1 04
Sun Jre 1.3.1 05
Sun Jre 1.3.1 19
Sun Jre 1.3.1 20
Sun Jre 1.3.1 21
Sun Jre 1.3.1 22
Sun Jre 1.4.2 1
Sun Jre 1.4.2 8
Sun Jre 1.4.2 10
Sun Jre 1.4.2 17
Sun Jre 1.3.1
Sun Jre 1.3.1 06
Sun Jre 1.3.1 08
828
VMScore
CVE-2008-0062
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
Mit Kerberos 5
Debian Debian Linux 3.1
Debian Debian Linux 4.0
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 8
Fedoraproject Fedora 7
828
VMScore
CVE-2008-0948
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions prior to 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote malicious users to caus...
Mit Kerberos 5 1.2.2
828
VMScore
CVE-2007-5894
The reply function in ftpd.c in the gssftp ftpd in MIT Kerberos 5 (krb5) does not initialize the length variable when auth_type has a certain value, which has unknown impact and remote authenticated attack vectors. NOTE: the original disclosure misidentifies the conditions under ...
Mit Kerberos 5 -
828
VMScore
CVE-2006-6143
The RPC library in Kerberos 5 1.4 up to and including 1.4.4, and 1.5 up to and including 1.5.1, as used in Kerberos administration daemon (kadmind) and other products that use this library, calls an uninitialized function pointer in freed memory, which allows remote malicious use...
Mit Kerberos 5 1.4
Mit Kerberos 5 1.4.1
Mit Kerberos 5 1.4.2
Mit Kerberos 5 1.4.3
Mit Kerberos 5 1.4.4
Mit Kerberos 5 1.5
Mit Kerberos 5 1.5.1
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
828
VMScore
CVE-2006-5051
Signal handler race condition in OpenSSH prior to 4.4 allows remote malicious users to cause a denial of service (crash), and possibly execute arbitrary code if GSSAPI authentication is enabled, via unspecified vectors that lead to a double-free.
Openbsd Openssh
Debian Debian Linux 3.1
Apple Mac Os X
Apple Mac Os X Server
805
VMScore
CVE-2020-17049
<p>A security feature bypass vulnerability exists in the way Key Distribution Center (KDC) determines if a service ticket can be used for delegation via Kerberos Constrained Delegation (KCD).</p> <p>To exploit the vulnerability, a compromised service that is con...
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows Server 2012
Microsoft Windows Server 2019 -
Microsoft Windows Server 2016 1903
Microsoft Windows Server 2016 1909
Microsoft Windows Server 2016 2004
Microsoft Windows Server 2016 20h2
Samba Samba
15 Github repositories
802
VMScore
CVE-2021-44142
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba versions before 4.13.17, 4.14.12 and 4.15.5 with vfs_fruit configured allow ou...
Samba Samba
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 21.10
Synology Diskstation Manager
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux For Scientific Computing 7.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Resilient Storage 7.0
Redhat Enterprise Linux For Power Little Endian 7.0
Redhat Enterprise Linux For Power Big Endian 7.0
Redhat Enterprise Linux For Ibm Z Systems 7.0
Redhat Virtualization Host 4.0
Redhat Enterprise Linux 8.0
3 Github repositories
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »