ID CVE-2000-0550
Summary Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service.
References
Vulnerable Configurations
  • cpe:2.3:a:cygnus:cygnus_network_security:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:cygnus:cygnus_network_security:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:cygnus:kerbnet:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:cygnus:kerbnet:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mit:kerberos:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:mit:kerberos:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mit:kerberos_5:1.0:*:*:*:*:*:*:*
    cpe:2.3:a:mit:kerberos_5:1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mit:kerberos_5:1.1:*:*:*:*:*:*:*
    cpe:2.3:a:mit:kerberos_5:1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mit:kerberos_5:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:mit:kerberos_5:1.1.1:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 21-01-2020 - 15:47)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
redhat via4
advisories
rhsa
id RHSA-2000:031
refmap via4
bid 1465
bugtraq 20000609 Security Advisory: MULTIPLE DENIAL OF SERVICE VULNERABILITIES IN KRB4 KDC
cert CA-2000-11
ciac K-051
confirm http://web.mit.edu/kerberos/www/advisories/krb4kdc.txt
xf kerberos-free-memory
Last major update 21-01-2020 - 15:47
Published 09-06-2000 - 04:00
Last modified 21-01-2020 - 15:47
Back to Top