CVSS: 9.8EPSS: 16%CPEs: 4EXPL: 2CVE-2012-6303 – WaveSurfer 1.8.8p4 - Memory Corruption (PoC)
https://notcve.org/view.php?id=CVE-2012-6303
11 Sep 2013 — Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file. Desbordamiento de buffer basado en memoria dinámica en la función GetWavHeader en generic/jkSoundfile.c en Snack Sound Toolkit, usado en WaveSurfer 1.8.8p4, permite a atacantes remotos causar denegación de servicio (caída) y posiblemente... • https://www.exploit-db.com/exploits/19772 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 7%CPEs: 9EXPL: 0CVE-2006-0677
https://notcve.org/view.php?id=CVE-2006-0677
14 Feb 2006 — telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference. • http://secunia.com/advisories/18894 •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2006-0582
https://notcve.org/view.php?id=CVE-2006-0582
08 Feb 2006 — Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors. Vulnerabilidad no especificada en Heimdal 0.6.x anteriores a 0.6.6 y 0.7.x anteriores a 0.7.2 cuando se almacenan credenciales remitidos, permite a atacantes sobreescribir ficheros de su elección y cambiar la propiedad de los ficheros mediante vectores desconocidos. • http://secunia.com/advisories/18733 •
CVSS: 9.1EPSS: 0%CPEs: 9EXPL: 0CVE-2004-0371
https://notcve.org/view.php?id=CVE-2004-0371
06 Apr 2004 — Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path. Heimdal 0.6.x anteriores a 0.6.1 y 0.5.x anteriores a 0.5.3 no realiza adecuadamente ciertas comprobaciones de consistencia de peticiones entre reinos, lo que permite a atacantes remotos con control de un reino impersonar a otros en la ruta de confianza entre reinos. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:08.heimdal.asc •
CVSS: 10.0EPSS: 32%CPEs: 4EXPL: 0CVE-2002-1235
https://notcve.org/view.php?id=CVE-2002-1235
25 Oct 2002 — The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack. La función kadm_ser en el demonio de administración de compatibildad de Ke... • ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-026.txt.asc •
CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2002-1225
https://notcve.org/view.php?id=CVE-2002-1225
21 Oct 2002 — Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access. • http://marc.info/?l=bugtraq&m=103341355708817&w=2 •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2002-1226
https://notcve.org/view.php?id=CVE-2002-1226
21 Oct 2002 — Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225). • http://marc.info/?l=bugtraq&m=103341355708817&w=2 •
CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0CVE-2002-0754
https://notcve.org/view.php?id=CVE-2002-0754
12 Aug 2002 — Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them. Kerberos 5 su (k5su) en FreeBSD 4.4 y anteriores se basa en la llamada al sistema getlogin para determinar si el usuario que esta ejecutando k5su es root, lo cual podría permitir a procesos sin privilegios, la obtención de permisos si ese proceso tiene un getlogin como root. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:07.k5su.asc •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 0CVE-2002-0600
https://notcve.org/view.php?id=CVE-2002-0600
11 Jun 2002 — Heap overflow in the KTH Kerberos 4 FTP client 4-1.1.1 allows remote malicious servers to execute arbitrary code on the client via a long response to a passive (PASV) mode request. • http://archives.neohapsis.com/archives/bugtraq/2002-04/0339.html •
CVSS: 5.9EPSS: 0%CPEs: 2EXPL: 1CVE-2001-1443
https://notcve.org/view.php?id=CVE-2001-1443
27 Aug 2001 — KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle attack. • http://josefsson.org/ktelnet/kerberos-telnet.html •