Computer Security
[EN] securityvulns.ru no-pyccku


MIT Kerberos 5 kadmind DoS
Published:07.04.2010
Source:
SecurityVulns ID:10747
Type:remote
Threat Level:
5/10
Description:use-after-free vulnerability on error message generation.
Affected:MIT : krb 1.5
 MIT : krb 1.6
CVE:CVE-2010-0629 (Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number.)
Original documentdocumentMIT, MITKRB5-SA-2010-003 [CVE-2010-0629] denial of service in kadmind in older krb5 releases (07.04.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod