Vulnerability Details : CVE-2006-3083
The (1) krshd and (2) v4rcp applications in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, when running on Linux and AIX, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which allows local users to gain privileges by causing setuid to fail to drop privileges using attacks such as resource exhaustion.
Products affected by CVE-2006-3083
- cpe:2.3:a:mit:kerberos_5:1.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:heimdal:heimdal:0.7.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-3083
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 14 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-3083
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2006-3083
-
Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2006-3083
-
Red Hat 2007-03-14Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
References for CVE-2006-3083
-
http://www.debian.org/security/2006/dsa-1146
[SECURITY] [DSA 1146-1] New krb5 packages fix privilege escalation
-
http://www.pdc.kth.se/heimdal/advisory/2006-08-08/
404 Not found
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9515
404 Not Found
-
http://www.ubuntu.com/usn/usn-334-1
USN-334-1: krb5 vulnerabilities | Ubuntu security notices | Ubuntu
-
http://www.novell.com/linux/security/advisories/2006_22_sr.html
404 Page Not Found | SUSE
-
http://secunia.com/advisories/21423
About Secunia Research | FlexeraVendor Advisory
-
http://www.osvdb.org/27869
404 Not Found
-
http://secunia.com/advisories/21847
About Secunia Research | FlexeraVendor Advisory
-
http://secunia.com/advisories/21441
About Secunia Research | FlexeraVendor Advisory
-
http://secunia.com/advisories/21456
About Secunia Research | FlexeraVendor Advisory
-
ftp://ftp.pdc.kth.se/pub/heimdal/src/heimdal-0.7.2-setuid-patch.txt
-
http://www.mandriva.com/security/advisories?name=MDKSA-2006:139
Mandriva
-
http://secunia.com/advisories/21402
About Secunia Research | FlexeraVendor Advisory
-
http://www.novell.com/linux/security/advisories/2006_20_sr.html
404 Page Not Found | SUSE
-
http://secunia.com/advisories/21467
About Secunia Research | FlexeraVendor Advisory
-
http://www.redhat.com/support/errata/RHSA-2006-0612.html
SupportPatch;Vendor Advisory
-
http://www.gentoo.org/security/en/glsa/glsa-200608-15.xml
MIT Kerberos 5: Multiple local privilege escalation vulnerabilities (GLSA 200608-15) — Gentoo security
-
http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2006-001-setuid.txt
Patch;Vendor Advisory
-
http://www.securityfocus.com/archive/1/442599/100/0/threaded
-
http://www.securityfocus.com/archive/1/443498/100/100/threaded
-
http://secunia.com/advisories/21436
About Secunia Research | FlexeraVendor Advisory
-
http://www.osvdb.org/27870
404 Not Found
-
http://www.kb.cert.org/vuls/id/580124
VU#580124 - MIT Kerberos (krb5) krshd and v4rcp do not properly validate setuid() or seteuid() callsPatch;US Government Resource
-
http://secunia.com/advisories/21461
About Secunia Research | FlexeraVendor Advisory
-
http://www.vupen.com/english/advisories/2006/3225
Site en constructionVendor Advisory
-
http://secunia.com/advisories/21439
About Secunia Research | FlexeraVendor Advisory
-
http://secunia.com/advisories/21613
About Secunia Research | FlexeraVendor Advisory
-
http://www.securityfocus.com/bid/19427
-
http://secunia.com/advisories/21527
About Secunia Research | FlexeraVendor Advisory
-
http://securitytracker.com/id?1016664
Access Denied
-
http://support.avaya.com/elmodocs2/security/ASA-2006-211.htm
ASA-2006-211 (RHSA-2006-0612)
-
http://security.gentoo.org/glsa/glsa-200608-21.xml
Heimdal: Multiple local privilege escalation vulnerabilities (GLSA 200608-21) — Gentoo security
-
http://secunia.com/advisories/22291
About Secunia Research | FlexeraVendor Advisory
Jump to