Vulnerability Details : CVE-2006-3083
The (1) krshd and (2) v4rcp applications in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, when running on Linux and AIX, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which allows local users to gain privileges by causing setuid to fail to drop privileges using attacks such as resource exhaustion.
Exploit prediction scoring system (EPSS) score for CVE-2006-3083
Probability of exploitation activity in the next 30 days: 0.05%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 11 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-3083
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2006-3083
-
Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2006-3083
-
Red Hat 2007-03-14Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
- http://www.debian.org/security/2006/dsa-1146
- http://www.pdc.kth.se/heimdal/advisory/2006-08-08/
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9515
- http://www.ubuntu.com/usn/usn-334-1
- http://www.novell.com/linux/security/advisories/2006_22_sr.html
- ftp://ftp.pdc.kth.se/pub/heimdal/src/heimdal-0.7.2-setuid-patch.txt
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:139
- http://www.novell.com/linux/security/advisories/2006_20_sr.html
-
http://www.redhat.com/support/errata/RHSA-2006-0612.html
Patch;Vendor Advisory
- http://www.gentoo.org/security/en/glsa/glsa-200608-15.xml
-
http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2006-001-setuid.txt
Patch;Vendor Advisory
- http://www.securityfocus.com/archive/1/442599/100/0/threaded
- http://www.securityfocus.com/archive/1/443498/100/100/threaded
-
http://www.kb.cert.org/vuls/id/580124
Patch;US Government Resource
-
http://www.vupen.com/english/advisories/2006/3225
Vendor Advisory
- http://www.securityfocus.com/bid/19427
- http://securitytracker.com/id?1016664
-
http://support.avaya.com/elmodocs2/security/ASA-2006-211.htm
- http://security.gentoo.org/glsa/glsa-200608-21.xml
- cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:heimdal:heimdal:0.7.2:*:*:*:*:*:*:*