Mit Kerberos 5 vulnerabilities
135 known vulnerabilities affecting mit/kerberos_5.
Total CVEs
135
CISA KEV
0
Public exploits
5
Exploited in wild
2
Severity breakdown
CRITICAL32HIGH35MEDIUM58LOW10
Vulnerabilities
Page 7 of 7
CVE-2003-0072P4MEDIUMCVSS 5.0v1.0.6v1.1+10 more2003-04-02
CVE-2003-0072 [MEDIUM] CVE-2003-0072: The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticate
The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes an out-of-bounds read of an array (aka "array overrun").
nvd
CVE-2024-26462P4MEDIUMCVSS 5.5v1.21.22024-02-29
CVE-2024-26462 [MEDIUM] CWE-401 CVE-2024-26462: Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.
nvd
CVE-2013-6800P4MEDIUMCVSS 4.0v1.10v1.10.1+3 more2013-11-18
CVE-2013-6800 [MEDIUM] CVE-2013-6800: An unspecified third-party database module for the Key Distribution Center (KDC) in MIT Kerberos 5 (
An unspecified third-party database module for the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.10.x allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request, a different vulnerability than CVE-2013-1418.
nvd
CVE-2014-5354P4LOWCVSS 3.5v1.12v1.12.1+1 more2014-12-16
CVE-2014-5354 [LOW] CVE-2014-5354: plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before
plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by creating a database entry for a keyless principal, as demonstrated by a kadmin "add_principal -nokey" or "purgekeys -all"
nvd
CVE-2000-0546P4MEDIUMCVSS 5.0≥ 1.0, ≤ 1.0.7v1.1+1 more2000-06-09
CVE-2000-0546 [MEDIUM] CWE-120 CVE-2000-0546: Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via t
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the set_tgtkey function.
nvd
CVE-2000-0547P4MEDIUMCVSS 5.0≥ 1.0, ≤ 1.0.7v1.1+1 more2000-06-09
CVE-2000-0547 [MEDIUM] CWE-120 CVE-2000-0547: Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via t
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function.
nvd
CVE-2000-0550P4MEDIUMCVSS 5.0v1.0v1.1+1 more2000-06-09
CVE-2000-0550 [MEDIUM] CVE-2000-0550: Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attack
Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service.
nvd
CVE-2000-0549P4MEDIUMCVSS 5.0v1.0v1.1+1 more2000-06-09
CVE-2000-0549 [MEDIUM] CVE-2000-0549: Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests
Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.
nvd
CVE-2014-5351P4LOWCVSS 2.1v1.12.22014-10-10
CVE-2014-5351 [LOW] CWE-255 CVE-2014-5351: The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5
The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13 sends old keys in a response to a -randkey -keepold request, which allows remote authenticated users to forge tickets by leveraging administrative access.
nvd
CVE-2007-5901P4MEDIUMCVSS 6.9≤ 1.6.3_kdc2007-12-06
CVE-2007-5901 [MEDIUM] CWE-399 CVE-2007-5901: Use-after-free vulnerability in the gss_indicate_mechs function in lib/gssapi/mechglue/g_initialize.
Use-after-free vulnerability in the gss_indicate_mechs function in lib/gssapi/mechglue/g_initialize.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors. NOTE: this might be the result of a typo in the source code.
nvd
CVE-2010-4021P4LOWCVSS 2.1v1.72010-12-02
CVE-2010-4021 [LOW] CWE-16 CVE-2010-4021: The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the us
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 does not properly restrict the use of TGT credentials for armoring TGS requests, which might allow remote authenticated users to impersonate a client by rewriting an inner request, aka a "KrbFastReq forgery issue."
nvd
CVE-2013-1417P4LOWCVSS 3.5v1.11v1.11.1+2 more2013-11-20
CVE-2013-1417 [LOW] CWE-20 CVE-2013-1417: do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, w
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of service (daemon crash) via a TGS-REQ request that triggers an attempted cross-realm referral for a host-based service principal.
nvd
CVE-2007-5971P4MEDIUMCVSS 6.9≤ 1.6.3_kdc2007-12-06
CVE-2007-5971 [MEDIUM] CWE-399 CVE-2007-5971: Double free vulnerability in the gss_krb5int_make_seal_token_v3 function in lib/gssapi/krb5/k5sealv3
Double free vulnerability in the gss_krb5int_make_seal_token_v3 function in lib/gssapi/krb5/k5sealv3.c in MIT Kerberos 5 (krb5) has unknown impact and attack vectors.
nvd
CVE-2001-0417P4LOWCVSS 2.1v1.5.22001-06-27
CVE-2001-0417 [LOW] CVE-2001-0417: Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ti
Kerberos 4 (aka krb4) allows local users to overwrite arbitrary files via a symlink attack on new ticket files.
nvd
CVE-2004-0971P4LOWCVSS 2.1v1.3.42005-02-09
CVE-2004-0971 [LOW] CVE-2004-0971: The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Secure Linux 1.5 through 2.1, and
The krb5-send-pr script in the kerberos5 (krb5) package in Trustix Secure Linux 1.5 through 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.
nvd
← Previous7 / 7