CVE-2008-0948
published 2008-03-19CVE-2008-0948: Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before…
PriorityP340critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
7.27%
93.6th percentile
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | krb5 | < krb5 1.3-1 (bookworm) | krb5 1.3-1 (bookworm) |
| mit | kerberos_5 | — | — |
| mit | krb5 | >= 0 < 1.3-1 | 1.3-1 |
| mit | krb5 | >= 0 < 1.3-1 | 1.3-1 |
| mit | krb5 | >= 0 < 1.3-1 | 1.3-1 |
| mit | krb5 | >= 0 < 1.3-1 | 1.3-1 |
| vmware | vmware_esxi | — | — |
| vmware | vmware_fusion | — | — |
| vmware | vmware_tools | — | — |
| vmware | vmware_workstation | — | — |
CVSS provenance
nvdv2.09.3CRITICALAV:N/AC:M/Au:N/C:C/I:C/A:C
osv9.3CRITICAL
vendor_debian9.3LOW
vendor_redhat9.3CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VMware
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
vendor_vmware·2008-06-04·CVSS 2.6
CVE-2006-1721 [LOW] Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
VMSA-2008-0009: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues
Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security Advisory VMware Security AdvisoryAdvisory ID: VMware Security AdvisorySynopsis: Updates to VMware Workstation, VMware Player, VMware ACE, VMware Fusion, VMware Server, VMware VIX API, VMware ESX, VMware ESXi resolve critical security issues VMware Security AdvisoryIssue date: VMware Security AdvisoryUpdated on:
CVEs: CVE-2006-1721, CVE-2007-4772, CVE-2007-5378, CVE-2007-5671, CVE-2008-0062, CVE-2008-0063, CVE-2008-0553, CVE-2008-0888, CVE-2
Red Hat
krb5: incorrect handling of high-numbered file descriptors in RPC library
vendor_redhat·2008-03-18·CVSS 9.3
CVE-2008-0948 [CRITICAL] krb5: incorrect handling of high-numbered file descriptors in RPC library
krb5: incorrect handling of high-numbered file descriptors in RPC library
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors.
Debian
CVE-2008-0948: krb5 - Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc ...
vendor_debian·2008·CVSS 9.3
CVE-2008-0948 [CRITICAL] CVE-2008-0948: krb5 - Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc ...
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors.
Scope: local
bookworm: resolved (fixed in 1.3-1)
bullseye: resolved (fixed in 1.3-1)
forky: resolved (fixed in 1.3-1)
sid: resolved (fixed in 1.3-1)
trixie: resolved (fixed in 1.3-1)
GHSA
GHSA-9qjv-6f4r-w76q: Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize
ghsa_unreviewed·2022-05-01
CVE-2008-0948 [HIGH] CWE-119 GHSA-9qjv-6f4r-w76q: Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors.
OSV
CVE-2008-0948: Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize
osv·2008-03-19·CVSS 9.3
CVE-2008-0948 [CRITICAL] CVE-2008-0948: Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize
Buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FD_SETSIZE macro, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code by triggering a large number of open file descriptors.
No detection rules found.
No public exploits indexed.
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00006.htmlhttp://marc.info/?l=bugtraq&m=130497213107107&w=2http://secunia.com/advisories/29423http://secunia.com/advisories/29424http://secunia.com/advisories/29428http://secunia.com/advisories/29663http://secunia.com/advisories/30535http://securityreason.com/securityalert/3752http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022520.htmlhttp://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022542.htmlhttp://web.mit.edu/kerberos/advisories/MITKRB5-SA-2008-002.txthttp://www.kb.cert.org/vuls/id/374121http://www.redhat.com/support/errata/RHSA-2008-0181.htmlhttp://www.securityfocus.com/archive/1/489762/100/0/threadedhttp://www.securityfocus.com/archive/1/489784/100/0/threadedhttp://www.securityfocus.com/archive/1/493080/100/0/threadedhttp://www.securityfocus.com/bid/28302http://www.securitytracker.com/id?1019631http://www.us-cert.gov/cas/techalerts/TA08-079B.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0009.htmlhttp://www.vupen.com/english/advisories/2008/0922/referenceshttp://www.vupen.com/english/advisories/2008/1102/referenceshttp://www.vupen.com/english/advisories/2008/1744https://exchange.xforce.ibmcloud.com/vulnerabilities/41274https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9209http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00006.htmlhttp://marc.info/?l=bugtraq&m=130497213107107&w=2http://secunia.com/advisories/29423http://secunia.com/advisories/29424http://secunia.com/advisories/29428http://secunia.com/advisories/29663http://secunia.com/advisories/30535http://securityreason.com/securityalert/3752http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022520.htmlhttp://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022542.htmlhttp://web.mit.edu/kerberos/advisories/MITKRB5-SA-2008-002.txthttp://www.kb.cert.org/vuls/id/374121http://www.redhat.com/support/errata/RHSA-2008-0181.htmlhttp://www.securityfocus.com/archive/1/489762/100/0/threadedhttp://www.securityfocus.com/archive/1/489784/100/0/threadedhttp://www.securityfocus.com/archive/1/493080/100/0/threadedhttp://www.securityfocus.com/bid/28302http://www.securitytracker.com/id?1019631http://www.us-cert.gov/cas/techalerts/TA08-079B.htmlhttp://www.vmware.com/security/advisories/VMSA-2008-0009.htmlhttp://www.vupen.com/english/advisories/2008/0922/referenceshttp://www.vupen.com/english/advisories/2008/1102/referenceshttp://www.vupen.com/english/advisories/2008/1744https://exchange.xforce.ibmcloud.com/vulnerabilities/41274https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9209
2008-03-19
Published