cbcvebase.
CVE-2004-1189
published 2004-12-31

CVE-2004-1189: The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track…

PriorityP428high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.73%
49.8th percentile
The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.

Affected

6 ranges
VendorProductVersion rangeFixed in
debiankrb5< krb5 1.3.6-1 (bookworm)krb5 1.3.6-1 (bookworm)
mitkerberos_5<= 1.3.5
mitkrb5>= 0 < 1.3.6-11.3.6-1
mitkrb5>= 0 < 1.3.6-11.3.6-1
mitkrb5>= 0 < 1.3.6-11.3.6-1
mitkrb5>= 0 < 1.3.6-11.3.6-1

CVSS provenance

nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
vendor_redhat7.2HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.