Lucene search

[email protected]CVE-2001-0035

HistoryMay 07, 2001 - 4:00 a.m.

CVE-2001-0035

2001-05-0704:00:00

[email protected]

web.nvd.nist.gov

cve-2001-0035

kth kerberos iv

buffer overflow

remote attacks

denial of service

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.4%

JSON

Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request.

Affected configurations

NVD

Node

kthkth_kerberosMatch4

CPENameOperatorVersion
kth:kth_kerberoskth kth kerberoseq4

CPE	Name	Operator	Version
kth:kth_kerberos	kth kth kerberos	eq	4

References

archives.neohapsis.com/archives/bugtraq/2000-12/0093.html

archives.neohapsis.com/archives/bugtraq/2000-12/0105.html

archives.neohapsis.com/archives/bugtraq/2001-01/0511.html

exchange.xforce.ibmcloud.com/vulnerabilities/5734

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.4%

JSON

Related for CVE-2001-0035

nvd1 cvelist1