CVE-2007-3999 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Kerberos 5
CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer16 documents8 sources
Severity
10.0CRITICALNVD
EPSS
47.0%
top 2.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedSep 5
Latest updateMay 1
Description
Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.
CVSS vector
AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0
Affected Packages2 packages
🔴Vulnerability Details
3GHSA▶
GHSA-62qg-wq9p-p6p2: Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss↗2022-05-01
OSV▶
CVE-2007-3999: Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss↗2007-09-05
CVEList▶
CVE-2007-3999: Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss↗2007-09-05