Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv2

CVE-2014-9422

Published: 19/02/2015 Updated: 21/01/2020
CVSS v2 Base Score: 6.1 | Impact Score: 8.5 | Exploitability Score: 3.9
VMScore: 544
Vector: AV:N/AC:H/Au:S/C:P/I:P/A:C
Subscribe to Mit

Vulnerability Summary

The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka krb5) up to and including 1.11.5, 1.12.x up to and including 1.12.2, and 1.13.x prior to 1.13.1 allows remote authenticated users to bypass a kadmin/* authorization check and obtain administrative access by leveraging access to a two-component principal with an initial "kadmind" substring, as demonstrated by a "ka/x" principal.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

mit kerberos 5 1.11.5

mit kerberos 5 1.12

mit kerberos 5 1.11.3

mit kerberos 5 1.11.4

mit kerberos 5 1.11.1

mit kerberos 5 1.11.2

mit kerberos 5 1.13

mit kerberos 5 1.11

mit kerberos 5 1.12.1

mit kerberos 5 1.12.2

Vendor Advisories

Ubuntu Security Notice: krb5 vulnerabilities
Several security issues were fixed in Kerberos ...
Amazon Linux AMI: ALAS-2015-518
A use-after-free flaw was found in the way the MIT Kerberos libgssapi_krb5 library processed valid context deletion tokens An attacker able to make an application using the GSS-API library (libgssapi) could call the gss_process_context_token() function and use this flaw to crash that application (CVE-2014-5352) If kadmind were used with an LDAP b ...
Red Hat: CVE-2014-9422
It was found that the MIT Kerberos administration server (kadmind) incorrectly accepted certain authentication requests for two-component server principal names A remote attacker able to acquire a key with a particularly named principal (such as "kad/x") could use this flaw to impersonate any user to kadmind, and perform administrative actions as ...

References

CWE-284https://github.com/krb5/krb5/commit/6609658db0799053fbef0d7d0aa2f1fd68ef32d8http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2015-001.txthttp://web.mit.edu/kerberos/advisories/2015-001-patch-r113.txthttp://lists.opensuse.org/opensuse-security-announce/2015-02/msg00016.htmlhttp://www.debian.org/security/2015/dsa-3153http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00011.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2015-March/151103.htmlhttp://rhn.redhat.com/errata/RHSA-2015-0439.htmlhttp://lists.opensuse.org/opensuse-updates/2015-02/msg00044.htmlhttp://www.ubuntu.com/usn/USN-2498-1http://lists.fedoraproject.org/pipermail/package-announce/2015-March/151437.htmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2015:069http://rhn.redhat.com/errata/RHSA-2015-0794.htmlhttp://www.securityfocus.com/bid/72494https://usn.ubuntu.com/2498-1/https://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2014-9422
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977IMAPlocal usersCVE-2024-32038CVE-2023-49963CVE-2023-22869CVE-2024-31497localCVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook