Описание
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.4.3-5ubuntu0.7 |
| devel | released | 1.6.dfsg.3~beta1-2ubuntu1 |
| edgy | released | 1.4.3-9ubuntu1.6 |
| feisty | released | 1.4.4-5ubuntu3.4 |
| gutsy | released | 1.6.dfsg.1-7ubuntu0.1 |
| upstream | pending | 1.6.4 |
Показывать по
EPSS
9.3 Critical
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for som ...
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
Уязвимости операционной системы Red Hat Enterprise Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
9.3 Critical
CVSS2
9.8 Critical
CVSS3