Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2012-1013

Опубликовано: 07 июн. 2012
Источник: debian
EPSS Низкий

Описание

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
krb5fixed1.10.1+dfsg-3package
krb5no-dsasqueezepackage

Примечания

  • DoS only triggered by clients with admin permissions

EPSS

Процентиль: 77%
0.01108
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2012-1013

ubuntu
около 13 лет назад

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password.

redhat логотип

CVE-2012-1013

redhat
около 13 лет назад

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password.

nvd логотип

CVE-2012-1013

nvd
около 13 лет назад

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password.

github логотип

GHSA-j6c8-vggw-4c3v

github
больше 3 лет назад

The check_1_6_dummy function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.8.x, 1.9.x, and 1.10.x before 1.10.2 allows remote authenticated administrators to cause a denial of service (NULL pointer dereference and daemon crash) via a KRB5_KDB_DISALLOW_ALL_TIX create request that lacks a password.

oracle-oval логотип

ELSA-2012-1131

oracle-oval
около 13 лет назад

ELSA-2012-1131: krb5 security update (IMPORTANT)

EPSS

Процентиль: 77%
0.01108
Низкий