ID CVE-2005-1981
Summary Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2000:-:server
    cpe:2.3:o:microsoft:windows_2000:-:server
  • cpe:2.3:o:microsoft:windows_2003_server:r2
    cpe:2.3:o:microsoft:windows_2003_server:r2
CVSS
Base: 2.1 (as of 10-08-2005 - 07:42)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS05-042.NASL
description The remote host contains a version of the Kerberos protocol that contains multiple security flaws that could allow an attacker to crash the remote service (AD), disclose information or spoof a session. An attacker would need valid credentials to exploit these flaws.
last seen 2019-02-21
modified 2018-11-15
plugin id 19405
published 2005-08-09
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=19405
title MS05-042: Vulnerability in Kerberos Could Allow Denial of Service, Information Disclosure and Spoofing (899587)
oval via4
  • accepted 2011-05-16T04:00:05.520-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Anna Min
      organization BigFix, Inc
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100095
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Windows 2000 Kerberos Message DoS Vulnerability
    version 68
  • accepted 2011-05-16T04:00:06.276-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100097
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Windows XP,SP1 (32-bit) Kerberos Message DoS Vulnerability
    version 67
  • accepted 2011-05-16T04:00:06.907-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Dragos Prisaca
      organization Gideon Technologies, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100099
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Windows XP,SP2 Kerberos Message DoS Vulnerability
    version 68
  • accepted 2011-05-16T04:00:07.614-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100101
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Windows XP,SP1 (64-bit) Kerberos Message DoS Vulnerability
    version 67
  • accepted 2011-05-16T04:00:08.267-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100103
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Server 2003 Kerberos Message DoS Vulnerability
    version 68
  • accepted 2011-05-16T04:00:08.869-04:00
    class vulnerability
    contributors
    • name Robert L. Hollis
      organization ThreatGuard, Inc.
    • name Shane Shaffer
      organization G2, Inc.
    • name Sudhir Gandhe
      organization Telos
    • name Shane Shaffer
      organization G2, Inc.
    description Unknown vulnerability in Microsoft Windows 2000 Server and Windows Server 2003 domain controllers allows remote authenticated users to cause a denial of service (system crash) via a crafted Kerberos message.
    family windows
    id oval:org.mitre.oval:def:100105
    status accepted
    submitted 2005-08-16T12:00:00.000-04:00
    title Server 2003,SP1 Kerberos Message DoS Vulnerability
    version 67
refmap via4
cert-vn VU#610133
ms MS05-042
sectrack 1014642
secunia 16368
Last major update 10-09-2008 - 15:40
Published 10-08-2005 - 00:00
Last modified 12-10-2018 - 17:36
Back to Top