CVE-2001-1323
published 2001-05-16CVE-2001-1323: Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64…
PriorityP424high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.05%
89.4th percentile
Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob output from the ftpglob function.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mit | kerberos_5 | < 1.2.2 | 1.2.2 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-cwm9-wqpm-mx67: Buffer overflow in MIT Kerberos 5 (krb5) 1
ghsa_unreviewed·2022-04-30
CVE-2001-1323 [HIGH] CWE-120 GHSA-cwm9-wqpm-mx67: Buffer overflow in MIT Kerberos 5 (krb5) 1
Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob output from the ftpglob function.
Red Hat
security flaw
vendor_redhat·2001-04-25·CVSS 7.5
CVE-2001-1323 [HIGH] security flaw
security flaw
Buffer overflow in MIT Kerberos 5 (krb5) 1.2.2 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via base-64 encoded data, which is not properly handled when the radix_encode function processes file glob output from the ftpglob function.
No detection rules found.
No public exploits indexed.
http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-022-01http://marc.info/?l=bugtraq&m=98826223517788&w=2http://web.mit.edu/kerberos/www/advisories/ftpbuf.txthttp://www.redhat.com/support/errata/RHSA-2001-060.htmlhttp://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-022-01http://marc.info/?l=bugtraq&m=98826223517788&w=2http://web.mit.edu/kerberos/www/advisories/ftpbuf.txthttp://www.redhat.com/support/errata/RHSA-2001-060.html
2001-05-16
Published