CVE-2009-3295
published 2009-12-29CVE-2009-3295: The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka…
PriorityP432medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
40.34%
98.5th percentile
The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | krb5 | < krb5 1.7+dfsg-4 (bookworm) | krb5 1.7+dfsg-4 (bookworm) |
| mit | kerberos_5 | — | — |
| mit | krb5 | >= 0 < 1.7+dfsg-4 | 1.7+dfsg-4 |
| mit | krb5 | >= 0 < 1.7+dfsg-4 | 1.7+dfsg-4 |
| mit | krb5 | >= 0 < 1.7+dfsg-4 | 1.7+dfsg-4 |
| mit | krb5 | >= 0 < 1.7+dfsg-4 | 1.7+dfsg-4 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Kerberos vulnerability
vendor_ubuntu·2010-01-06
CVE-2009-3295 Kerberos vulnerability
Title: Kerberos vulnerability
Summary: Kerberos vulnerability
Jeff Blaine, Radoslav Bodo, Jakob Haufe, and Jorgen Wahlsten discovered
that the Kerberos Key Distribution Center service did not correctly verify
certain network traffic. An unauthenticated remote attacker could send
a specially crafted request that would cause the KDC to crash, leading
to a denial of service.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
krb5: KDC denial of service in cross-realm referral processing (MITKRB5-SA-2009-003)
vendor_redhat·2009-12-28·CVSS 5.0
CVE-2009-3295 [MEDIUM] krb5: KDC denial of service in cross-realm referral processing (MITKRB5-SA-2009-003)
krb5: KDC denial of service in cross-realm referral processing (MITKRB5-SA-2009-003)
The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.
Statement: Not vulnerable. This issue did not affect the versions of krb5 as shipped with Red Hat Enterprise Linux 3, 4, or 5.
Debian
CVE-2009-3295: krb5 - The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral ...
vendor_debian·2009·CVSS 5.0
CVE-2009-3295 [MEDIUM] CVE-2009-3295: krb5 - The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral ...
The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.
Scope: local
bookworm: resolved (fixed in 1.7+dfsg-4)
bullseye: resolved (fixed in 1.7+dfsg-4)
forky: resolved (fixed in 1.7+dfsg-4)
sid: resolved (fixed in 1.7+dfsg-4)
trixie: resolved (fixed in 1.7+dfsg-4)
GHSA
GHSA-m68p-v7vm-cp2m: The prep_reprocess_req function in kdc/do_tgs_req
ghsa_unreviewed·2022-05-02
CVE-2009-3295 [MEDIUM] GHSA-m68p-v7vm-cp2m: The prep_reprocess_req function in kdc/do_tgs_req
The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.
OSV
CVE-2009-3295: The prep_reprocess_req function in kdc/do_tgs_req
osv·2009-12-29·CVSS 5.0
CVE-2009-3295 [MEDIUM] CVE-2009-3295: The prep_reprocess_req function in kdc/do_tgs_req
The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.
No detection rules found.
No public exploits indexed.
http://secunia.com/advisories/37977http://securitytracker.com/id?1023392http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2009-003.txthttp://www.securityfocus.com/archive/1/508622/100/0/threadedhttp://www.securityfocus.com/bid/37486http://www.vupen.com/english/advisories/2009/3652http://secunia.com/advisories/37977http://securitytracker.com/id?1023392http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2009-003.txthttp://www.securityfocus.com/archive/1/508622/100/0/threadedhttp://www.securityfocus.com/bid/37486http://www.vupen.com/english/advisories/2009/3652
2009-12-29
Published