CVE-2005-1175
MITKRB5-SA-2005-002.txt
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Heap-based buffer overflow in the Key Distribution Center (KDC) in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a certain valid TCP or UDP request.
Desbordamiento de búfer en MIT Kerberos 5 (krb5) 1.3 hasta la 1.4.1 Key Distribution Center (KDC) permite que atacantes remotos causen una denegación de servicio (caída de la aplicación) y posiblmente ejecuten código arbitrario mediante cierta petición válida TCP o UDP.
Daniel Wachdorf discovered that MIT Kerberos 5 could corrupt the heap by freeing unallocated memory when receiving a special TCP request (CVE-2005-1174). He also discovered that the same request could lead to a single-byte heap overflow (CVE-2005-1175). Magnus Hagander discovered that krb5_recvauth() function of MIT Kerberos 5 might try to double-free memory (CVE-2005-1689). Versions less than 1.4.1-r1 are affected.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2005-04-19 CVE Reserved
- 2005-07-13 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (28)
| URL | Tag | Source |
|---|---|---|
| http://marc.info/?l=bugtraq&m=112122123211974&w=2 | Mailing List | |
| http://secunia.com/advisories/16041 | Third Party Advisory | |
| http://secunia.com/advisories/17135 | Third Party Advisory | |
| http://secunia.com/advisories/17899 | Third Party Advisory | |
| http://secunia.com/advisories/20364 | Third Party Advisory | |
| http://securitytracker.com/id?1014460 | Vdb Entry | |
| http://www.securityfocus.com/bid/14236 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2005/1066 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/2074 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/21328 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A736 | Signature | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9902 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-002-kdc.txt | 2020-01-21 | |
| http://www.debian.org/security/2005/dsa-757 | 2020-01-21 | |
| http://www.kb.cert.org/vuls/id/885830 | 2020-01-21 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3 Search vendor "Mit" for product "Kerberos 5" and version "1.3" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.1 Search vendor "Mit" for product "Kerberos 5" and version "1.3.1" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.2 Search vendor "Mit" for product "Kerberos 5" and version "1.3.2" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.3 Search vendor "Mit" for product "Kerberos 5" and version "1.3.3" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.4 Search vendor "Mit" for product "Kerberos 5" and version "1.3.4" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.5 Search vendor "Mit" for product "Kerberos 5" and version "1.3.5" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.3.6 Search vendor "Mit" for product "Kerberos 5" and version "1.3.6" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.4 Search vendor "Mit" for product "Kerberos 5" and version "1.4" | - |
Affected
| ||||||
| Mit Search vendor "Mit" | Kerberos 5 Search vendor "Mit" for product "Kerberos 5" | 1.4.1 Search vendor "Mit" for product "Kerberos 5" and version "1.4.1" | - |
Affected
| ||||||