Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kerberos 5 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2000-0550
Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote malicious users to cause a denial of service.
Cygnus Cygnus Network Security 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 4.0
Mit Kerberos 5 1.1
Mit Kerberos 5 1.1.1
Mit Kerberos 5 1.0
890
VMScore
CVE-2002-1235
The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and previous versions, (2) kadmind in KTH Kerberos 4 (eBones) prior to 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) prior to 0.5.1 when comp...
Kth Kth Kerberos 4
Kth Kth Kerberos 5
Mit Kerberos 5
Debian Debian Linux 3.0
445
VMScore
CVE-2013-1415
The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) prior to 1.10.4 and 1.11.x prior to 1.11.1 does not properly handle errors during extraction of fiel...
Mit Kerberos 5
Mit Kerberos 5 1.11
Opensuse Opensuse 11.4
445
VMScore
CVE-2003-0058
MIT Kerberos V5 Key Distribution Center (KDC) prior to 1.2.5 allows remote authenticated malicious users to cause a denial of service (crash) on KDCs within the same realm via a certain protocol request that causes a null dereference.
Mit Kerberos 5 1.2.4
Sun Enterprise Authentication Mechanism 1.0
Mit Kerberos 5 1.2.2
Mit Kerberos 5 1.2.3
Mit Kerberos 5 1.2.1
Sun Sunos 5.8
Sun Solaris 8.0
Sun Solaris 9.0
NA
CVE-2022-42898
PAC parsing in MIT Kerberos 5 (aka krb5) prior to 1.19.4 and 1.20.x prior to 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and...
Mit Kerberos 5
Mit Kerberos 5 1.20
Heimdal Project Heimdal
Samba Samba
187
VMScore
CVE-2001-0417
Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ticket files.
Mit Kerberos 5 1.5.2
Mit Kerberos 4
445
VMScore
CVE-2001-1443
KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote malicious users to read communications via a man-in-the-middle attack.
Kth Kth Kerberos 4
Kth Kth Kerberos 5
668
VMScore
CVE-2001-1444
The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote malicious users to downgrade authentication and encryption mechanisms via a man-in-the-middle...
Kth Kth Kerberos 4
Kth Kth Kerberos 5
1000
VMScore
CVE-2000-0389
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote malicious users to gain root privileges.
Cygnus Cygnus Network Security 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 5 1.0
Mit Kerberos 4.0
Mit Kerberos 5 1.1.1
Redhat Linux 6.2
3 EDB exploits
890
VMScore
CVE-2000-0390
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote malicious users to gain root privileges.
Mit Kerberos 5 1.1.1
Cygnus Cygnus Network Security 4.0
Mit Kerberos 4.0
Cygnus Kerbnet 5.0
Mit Kerberos 5 1.0
Redhat Linux 6.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »