10

CVE-2004-0523

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MitKerberos Version1.0
MitKerberos Version1.0.8
MitKerberos Version1.2.2.beta1
MitKerberos 5 Version1.0
MitKerberos 5 Version1.0.6
MitKerberos 5 Version1.1
MitKerberos 5 Version1.1.1
MitKerberos 5 Version1.2
MitKerberos 5 Version1.2 Updatebeta1
MitKerberos 5 Version1.2 Updatebeta2
MitKerberos 5 Version1.2.1
MitKerberos 5 Version1.2.2
MitKerberos 5 Version1.2.3
MitKerberos 5 Version1.2.4
MitKerberos 5 Version1.2.5
MitKerberos 5 Version1.2.6
MitKerberos 5 Version1.2.7
MitKerberos 5 Version1.3
MitKerberos 5 Version1.3 Updatealpha1
MitKerberos 5 Version1.3.3
SgiPropack Version2.4
SgiPropack Version3.0
SunSeam Version1.0
SunSeam Version1.0.1
SunSeam Version1.0.2
SunSolaris Version8.0 Editionx86
SunSolaris Version9.0 Editionsparc
SunSolaris Version9.0 Editionx86
SunSunos Version5.8
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 11.67% 0.955
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000860
http://lwn.net/Articles/88206/
http://marc.info/?l=bugtraq&m=108612325909496&w=2
http://marc.info/?l=bugtraq&m=108619161815320&w=2
http://marc.info/?l=bugtraq&m=108619250923790&w=2
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101512-1
http://www.debian.org/security/2004/dsa-520
Patch
Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200406-21.xml
http://www.kb.cert.org/vuls/id/686862
Third Party Advisory
US Government Resource
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:056
http://www.redhat.com/support/errata/RHSA-2004-236.html
http://www.securityfocus.com/bid/10448
https://exchange.xforce.ibmcloud.com/vulnerabilities/16268
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10295
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2002
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A724
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A991