Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2004-1189

Published: 31/12/2004 Updated: 02/02/2021
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 641
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Kerberos 5

Vulnerability Summary

The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mit kerberos 5

Vendor Advisories

Ubuntu Security Notice: krb5 vulnerability
Michael Tautschnig discovered a possible buffer overflow in the add_to_history() function in the MIT Kerberos 5 implementation Performing a password change did not properly track the password policy’s history count and the maximum number of keys This could cause an array overflow and may have allowed authenticated users (not necessarily one wit ...
Red Hat: krb5 security update
Synopsis krb5 security update Type/Severity Security Advisory: Moderate Topic Updated Kerberos (krb5) packages that correct buffer overflow and temporaryfile bugs are now available for Red Hat Enterprise Linux Description Kerberos is a networked authentication system that uses a trusted th ...
Red Hat: krb5 security update
Synopsis krb5 security update Type/Severity Security Advisory: Moderate Topic Updated Kerberos (krb5) packages that correct a buffer overflow bug are nowavailable for Red Hat Enterprise Linux 4This update has been rated as having moderate security impact by the Red HatSecurity Response Team Descr ...

References

CWE-787http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-004-pwhist.txthttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000917http://www.redhat.com/support/errata/RHSA-2005-012.htmlhttp://www.redhat.com/support/errata/RHSA-2005-045.htmlhttp://www.trustix.org/errata/2004/0069http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2004:156http://marc.info/?l=bugtraq&m=110548298407590&w=2http://marc.info/?l=bugtraq&m=110358420909358&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18621https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11911https://usn.ubuntu.com/58-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook