Off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote malicious users to cause a denial of service (crash) via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mod auth kerb mod auth kerb 5.0 |