Published: 26/06/2007 Updated: 02/02/2021

CVSS v2 Base Score: 8.3 | Impact Score: 10 | Exploitability Score: 6.5

VMScore: 739

Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C

Integer signedness error in the gssrpc__svcauth_unix function in svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and previous versions might allow remote malicious users to execute arbitrary code via a negative length value.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mit kerberos 5
debian debian linux 3.1
debian debian linux 4.0
canonical ubuntu linux 6.06
canonical ubuntu linux 6.10
canonical ubuntu linux 7.04

Debian Bug report logs - #430787 krb5-admin-server: CVE-2007-2442, CVE-2007-2443: kadmind affected by multiple RPC library vulnerabilities Package: krb5-admin-server; Maintainer for krb5-admin-server is Sam Hartman <hartmans@debianorg>; Source for krb5-admin-server is src:krb5 (PTS, buildd, popcon) Reported by: Dominic Harg ...

Wei Wang discovered that the krb5 RPC library did not correctly handle certain error conditions A remote attacker could cause kadmind to free an uninitialized pointer, leading to a denial of service or possibly execution of arbitrary code with root privileges (CVE-2007-2442) ...

Several remote vulnerabilities have been discovered in the MIT reference implementation of the Kerberos network authentication protocol suite, which may lead to the execution of arbitrary code The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2007-2442 Wei Wang discovered that the free of an uninitialised ...

NVD-CWE-Other http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-004.txt http://www.us-cert.gov/cas/techalerts/TA07-177A.html http://www.kb.cert.org/vuls/id/365313 http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2007-004.txt https://issues.rpath.com/browse/RPL-1499 https://secure-support.novell.com/KanisaPlatform/Publishing/773/3248163_f.SAL_Public.html http://docs.info.apple.com/article.html?artnum=306172 http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html http://www.debian.org/security/2007/dsa-1323 http://security.gentoo.org/glsa/glsa-200707-11.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:137 http://www.redhat.com/support/errata/RHSA-2007-0384.html http://www.redhat.com/support/errata/RHSA-2007-0562.html ftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc http://www.novell.com/linux/security/advisories/2007_38_krb5.html http://www.trustix.org/errata/2007/0021/http://www.ubuntu.com/usn/usn-477-1 http://www.securityfocus.com/bid/24657 http://www.securityfocus.com/bid/25159 http://www.securitytracker.com/id?1018293 http://secunia.com/advisories/25821 http://secunia.com/advisories/25870 http://secunia.com/advisories/25890 http://secunia.com/advisories/25894 http://secunia.com/advisories/25800 http://secunia.com/advisories/25801 http://secunia.com/advisories/25814 http://secunia.com/advisories/25888 http://secunia.com/advisories/25911 http://secunia.com/advisories/26228 http://secunia.com/advisories/26235 http://secunia.com/advisories/26033 http://secunia.com/advisories/26909 http://secunia.com/advisories/27706 http://secunia.com/advisories/40346 http://www.vupen.com/english/advisories/2010/1574 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427 http://www.vupen.com/english/advisories/2007/2491 http://www.vupen.com/english/advisories/2007/2732 http://www.vupen.com/english/advisories/2007/3229 http://www.vupen.com/english/advisories/2007/2337 http://osvdb.org/36597 https://exchange.xforce.ibmcloud.com/vulnerabilities/35085 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7131 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11277 http://www.securityfocus.com/archive/1/472507/30/5970/threaded http://www.securityfocus.com/archive/1/472432/100/0/threaded http://www.securityfocus.com/archive/1/472288/100/0/threaded https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=430787 https://usn.ubuntu.com/477-1/https://nvd.nist.gov https://www.kb.cert.org/vuls/id/365313

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2443

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect