Kerberos 4 KDC program improperly frees memory twice (aka "double-free"), which allows remote attackers to cause a denial of service.
Max CVSS
5.0
EPSS Score
2.31%
Published
2000-06-09
Updated
2020-01-21
Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.
Max CVSS
5.0
EPSS Score
1.03%
Published
2000-06-09
Updated
2020-01-21
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the e_msg variable in the kerb_err_reply function.
Max CVSS
5.0
EPSS Score
0.82%
Published
2000-06-09
Updated
2021-02-02
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the localrealm variable in the process_v4 function.
Max CVSS
5.0
EPSS Score
0.80%
Published
2000-06-09
Updated
2021-02-02
Buffer overflow in Kerberos 4 KDC program allows remote attackers to cause a denial of service via the lastrealm variable in the set_tgtkey function.
Max CVSS
5.0
EPSS Score
0.80%
Published
2000-06-09
Updated
2021-02-02
Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.
Max CVSS
7.2
EPSS Score
0.04%
Published
2000-05-16
Updated
2020-01-21
Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.
Max CVSS
10.0
EPSS Score
1.90%
Published
2000-05-16
Updated
2020-01-21
Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.
Max CVSS
10.0
EPSS Score
1.90%
Published
2000-05-16
Updated
2020-01-21
Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.
Max CVSS
10.0
EPSS Score
3.70%
Published
2000-05-16
Updated
2020-01-21
9 vulnerabilities found