Page 10 of 62 results (0.007 seconds)

CVSS: 7.5EPSS: 2%CPEs: 2EXPL: 0

Unknown vulnerability in the chk_trans.c of the libkrb5 library for MIT Kerberos V5 before 1.2.5 allows users from one realm to impersonate users in other realms that have the same inter-realm keys. Vulnerabilidad desconocida en chk_trans.c de la librería libkrb5 de MIT Kerberos V5 anteriores a 1.2.5 permite a usuarios de un dominio impersonar a usuarios de otros dominios que tienen las mismas claves inter-dominios. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000639 http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2003-001-multiple.txt http://www.kb.cert.org/vuls/id/684563 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:043 http://www.redhat.com/support/errata/RHSA-2003-051.html http://www.redhat.com/support/errata/RHSA-2003-052.html http://www.redhat.com/support/errata/RHSA-2003-168.html http://www.securityfocus.com/bid/6714 https://exchange •

CVSS: 5.0EPSS: 8%CPEs: 4EXPL: 0

Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value. Error de falta de signo en enteros en el decodificador MIT Kerberos V5 ASN.1 permite a atacantes remotos causar una denegación de servicio mediante un elemento de datos largo sin signo, que es a continuación usado como un valor negativo. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000639 http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2003-001-multiple.txt http://www.kb.cert.org/vuls/id/587579 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:043 http://www.osvdb.org/4896 http://www.redhat.com/support/errata/RHSA-2003-051.html http://www.redhat.com/support/errata/RHSA-2003-052.html http://www.redhat.com/support/errata/RHSA-2003-168.html http://www.securityfocus.com •

CVSS: 7.5EPSS: 8%CPEs: 4EXPL: 0

Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000639 http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2003-001-multiple.txt http://www.kb.cert.org/vuls/id/787523 http://www.osvdb.org/4879 http://www.securityfocus.com/bid/6712 https://exchange.xforce.ibmcloud.com/vulnerabilities/11189 •

CVSS: 10.0EPSS: 29%CPEs: 4EXPL: 0

The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack. La función kadm_ser en el demonio de administración de compatibildad de Kerberos v4 (kadmind4) en el MIT Kerberos 5 (krb5) krb5-1.2.6 y anteriores kadmind en KTH Kerberos 4 (eBones) anteriores a 1.2.1, y kadmind en KTH Kerberos 5 (Heimdal) anteriores a 0.5.1 compilados con soporte de Kerberos 4, no verifica adecuadamente la longitud de un campo de petición, lo que permite a atacantes remotos ejecutar código arbitrario mediante un ataque de desbordamiento de búfer. • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-026.txt.asc http://archives.neohapsis.com/archives/bugtraq/2002-10/0399.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000534 http://marc.info/?l=bugtraq&m=103539530729206&w=2 http://marc.info/?l=bugtraq&m=103564944215101&w=2 http://marc.info/?l=bugtraq&m=103582517126392&w=2 http://marc.info/? •

CVSS: 10.0EPSS: 0%CPEs: 87EXPL: 3

Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not properly handled by the telrcv function. • https://www.exploit-db.com/exploits/21018 ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:49.telnetd.asc ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2001-012.txt.asc ftp://patches.sgi.com/support/free/security/advisories/20010801-01-P ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.10/CSSA-2001-SCO.10.txt http://archives.neohapsis.com/archives/hp/2001-q4/0014.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000413 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •