9

CVE-2007-1216

Double free vulnerability in the GSS-API library (lib/gssapi/krb5/k5unseal.c), as used by the Kerberos administration daemon (kadmind) in MIT krb5 before 1.6.1, when used with the authentication method provided by the RPCSEC_GSS RPC library, allows remote authenticated users to execute arbitrary code and modify the Kerberos key database via a message with an "an invalid direction encoding".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MitKerberos 5 Version < 1.6.1
CanonicalUbuntu Linux Version5.10
CanonicalUbuntu Linux Version6.06
CanonicalUbuntu Linux Version6.10
DebianDebian Linux Version3.1
DebianDebian Linux Version4.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 9.88% 0.95
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9 8 10
AV:N/AC:L/Au:S/C:C/I:C/A:C
CWE-415 Double Free

The product calls free() twice on the same memory address.

http://docs.info.apple.com/article.html?artnum=305391
Broken Link
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
Third Party Advisory
Mailing List
http://secunia.com/advisories/24966
Third Party Advisory
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2007/1470
Third Party Advisory
ftp://patches.sgi.com/support/free/security/advisories/20070401-01-P.asc
Broken Link
http://lists.suse.com/archive/suse-security-announce/2007-Apr/0001.html
Broken Link
http://secunia.com/advisories/24706
Third Party Advisory
http://secunia.com/advisories/24735
Third Party Advisory
http://secunia.com/advisories/24736
Third Party Advisory
http://secunia.com/advisories/24740
Third Party Advisory
http://secunia.com/advisories/24750
Third Party Advisory
http://secunia.com/advisories/24757
Third Party Advisory
http://secunia.com/advisories/24785
Third Party Advisory
http://secunia.com/advisories/24786
Third Party Advisory
http://secunia.com/advisories/24817
Third Party Advisory
http://security.gentoo.org/glsa/glsa-200704-02.xml
Third Party Advisory
http://www.debian.org/security/2007/dsa-1276
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDKSA-2007:077
Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2007-0095.html
Third Party Advisory
http://www.securityfocus.com/archive/1/464666/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/archive/1/464814/30/7170/threaded
Third Party Advisory
VDB Entry
http://www.ubuntu.com/usn/usn-449-1
Third Party Advisory
http://www.us-cert.gov/cas/techalerts/TA07-093B.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2007/1218
Third Party Advisory
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01056923
Broken Link
http://secunia.com/advisories/25388
Third Party Advisory
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-003.txt
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/419344
Third Party Advisory
US Government Resource
http://www.securityfocus.com/archive/1/464591/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/23282
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id?1017852
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2007/1916
Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/33413
Third Party Advisory
VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11135
Third Party Advisory
Broken Link