ID CVE-2008-0062
Summary KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
References
Vulnerable Configurations
  • cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*
  • cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*
    cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 15-10-2018 - 21:57)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
oval via4
accepted 2013-04-29T04:19:47.436-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 3
    oval oval:org.mitre.oval:def:11782
  • comment CentOS Linux 3.x
    oval oval:org.mitre.oval:def:16651
  • comment The operating system installed on the system is Red Hat Enterprise Linux 4
    oval oval:org.mitre.oval:def:11831
  • comment CentOS Linux 4.x
    oval oval:org.mitre.oval:def:16636
  • comment Oracle Linux 4.x
    oval oval:org.mitre.oval:def:15990
  • comment The operating system installed on the system is Red Hat Enterprise Linux 5
    oval oval:org.mitre.oval:def:11414
  • comment The operating system installed on the system is CentOS Linux 5.x
    oval oval:org.mitre.oval:def:15802
  • comment Oracle Linux 5.x
    oval oval:org.mitre.oval:def:15459
description KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
family unix
id oval:org.mitre.oval:def:9496
status accepted
submitted 2010-07-09T03:56:16-04:00
title KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.
version 24
redhat via4
advisories
  • rhsa
    id RHSA-2008:0164
  • rhsa
    id RHSA-2008:0180
  • rhsa
    id RHSA-2008:0181
  • rhsa
    id RHSA-2008:0182
rpms
  • krb5-devel-0:1.6.1-17.el5_1.1
  • krb5-libs-0:1.6.1-17.el5_1.1
  • krb5-server-0:1.6.1-17.el5_1.1
  • krb5-workstation-0:1.6.1-17.el5_1.1
  • krb5-devel-0:1.3.4-54.el4_6.1
  • krb5-libs-0:1.3.4-54.el4_6.1
  • krb5-server-0:1.3.4-54.el4_6.1
  • krb5-workstation-0:1.3.4-54.el4_6.1
  • krb5-devel-0:1.2.7-68
  • krb5-libs-0:1.2.7-68
  • krb5-server-0:1.2.7-68
  • krb5-workstation-0:1.2.7-68
refmap via4
apple APPLE-SA-2008-03-18
bid 28303
bugtraq
  • 20080318 MITKRB5-SA-2008-001: double-free, uninitialized data vulnerabilities in krb5kdc
  • 20080319 rPSA-2008-0112-1 krb5 krb5-server krb5-services krb5-test krb5-workstation
  • 20080604 VMSA-2008-0009 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
cert-vn VU#895609
confirm
debian DSA-1524
fedora
  • FEDORA-2008-2637
  • FEDORA-2008-2647
gentoo GLSA-200803-31
hp
  • HPSBOV02682
  • SSRT100495
mandriva
  • MDVSA-2008:069
  • MDVSA-2008:070
  • MDVSA-2008:071
sectrack 1019626
secunia
  • 29420
  • 29423
  • 29424
  • 29428
  • 29435
  • 29438
  • 29450
  • 29451
  • 29457
  • 29462
  • 29464
  • 29516
  • 29663
  • 30535
suse SUSE-SA:2008:016
ubuntu USN-587-1
vupen
  • ADV-2008-0922
  • ADV-2008-0924
  • ADV-2008-1102
  • ADV-2008-1744
xf krb5-kdc-code-execution(41275)
Last major update 15-10-2018 - 21:57
Published 19-03-2008 - 10:44
Back to Top