ID CVE-2006-0677
Summary telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference.
References
Vulnerable Configurations
  • cpe:2.3:a:kth:heimdal:0.6.1
    cpe:2.3:a:kth:heimdal:0.6.1
  • cpe:2.3:a:kth:heimdal:0.6.2
    cpe:2.3:a:kth:heimdal:0.6.2
  • cpe:2.3:a:kth:heimdal:0.6.3
    cpe:2.3:a:kth:heimdal:0.6.3
  • cpe:2.3:a:kth:heimdal:0.6.4
    cpe:2.3:a:kth:heimdal:0.6.4
  • cpe:2.3:a:kth:heimdal:0.6.5
    cpe:2.3:a:kth:heimdal:0.6.5
  • cpe:2.3:a:kth:heimdal:0.7.1
    cpe:2.3:a:kth:heimdal:0.7.1
  • cpe:2.3:a:kth:heimdal:0.7.1.1
    cpe:2.3:a:kth:heimdal:0.7.1.1
  • cpe:2.3:a:kth:heimdal:0.7.1.2
    cpe:2.3:a:kth:heimdal:0.7.1.2
  • cpe:2.3:a:kth:heimdal:0.7.1.3
    cpe:2.3:a:kth:heimdal:0.7.1.3
CVSS
Base: 7.8 (as of 14-02-2006 - 07:40)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE COMPLETE
nessus via4
  • NASL family Ubuntu Local Security Checks
    NASL id UBUNTU_USN-253-1.NASL
    description A remote Denial of Service vulnerability was discovered in the heimdal implementation of the telnet daemon. A remote attacker could force the server to crash due to a NULL de-reference before the user logged in, resulting in inetd turning telnetd off because it forked too fast. Please note that the heimdal-servers package is not officially supported in Ubuntu (it is in the 'universe' component of the archive). However, this affects you if you use a customized version built from the heimdal source package (which is supported). Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-08-15
    plugin id 21061
    published 2006-03-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21061
    title Ubuntu 4.10 / 5.04 / 5.10 : heimdal vulnerability (USN-253-1)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-977.NASL
    description Two vulnerabilities have been discovered in heimdal, a free implementation of Kerberos 5. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2006-0582 Privilege escalation in the rsh server allows an authenticated attacker to overwrite arbitrary files and gain ownership of them. - CVE-2006-0677 A remote attacker could force the telnet server to crash before the user logged in, resulting in inetd turning telnetd off because it forked too fast. The old stable distribution (woody) does not expose rsh and telnet servers.
    last seen 2019-02-21
    modified 2018-08-10
    plugin id 22843
    published 2006-10-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=22843
    title Debian DSA-977-1 : heimdal - several vulnerabilities
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_B62C80C2B81A11DABEC500123FFE8333.NASL
    description A Project heimdal Security Advisory reports : The telnet client program in Heimdal has buffer overflows in the functions slc_add_reply() and env_opt_add(), which may lead to remote code execution. The telnetd server program in Heimdal has buffer overflows in the function getterminaltype, which may lead to remote code execution. The rshd server in Heimdal has a privilege escalation bug when storing forwarded credentials. The code allowes a user to overwrite a file with its credential cache, and get ownership of the file.
    last seen 2019-02-21
    modified 2018-11-23
    plugin id 21499
    published 2006-05-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=21499
    title FreeBSD : heimdal -- Multiple vulnerabilities (b62c80c2-b81a-11da-bec5-00123ffe8333)
refmap via4
bid 16676
debian DSA-977
mlist [heimdal-discuss] 20060206 Heimdal 0.7.2 and 0.6.6
osvdb 23244
secunia
  • 18894
  • 18961
  • 19005
sreason 449
suse SUSE-SA:2006:011
ubuntu USN-253-1
vupen
  • ADV-2006-0456
  • ADV-2006-0628
  • ADV-2006-0653
xf heimdal-telnetd-dos(24763)
Last major update 07-03-2011 - 21:30
Published 14-02-2006 - 06:06
Last modified 19-10-2018 - 11:45
Back to Top