Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2010-0629
HistoryApr 07, 2010 - 3:30 p.m.

CVE-2010-0629

2010-04-0715:30:00
CWE-416
mitre
web.nvd.nist.gov
50
cve-2010-0629
mit kerberos 5
vulnerability
denial of service
remote authenticated users
daemon crash
api version number

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.9

Confidence

High

EPSS

0.006

Percentile

78.9%

JSON

Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number.

Affected configurations

Nvd
Node
mitkerberos_5Range1.51.6.3
Node
fedoraprojectfedoraMatch11
Node
opensuseopensuseMatch11.0
OR
opensuseopensuseMatch11.1
OR
suselinux_enterpriseMatch11.0-
Node
canonicalubuntu_linuxMatch8.04-
OR
canonicalubuntu_linuxMatch8.10
OR
canonicalubuntu_linuxMatch9.04
VendorProductVersionCPE
mitkerberos_5*cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*
fedoraprojectfedora11cpe:2.3:o:fedoraproject:fedora:11:*:*:*:*:*:*:*
opensuseopensuse11.0cpe:2.3:o:opensuse:opensuse:11.0:*:*:*:*:*:*:*
opensuseopensuse11.1cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
suselinux_enterprise11.0cpe:2.3:o:suse:linux_enterprise:11.0:-:*:*:*:*:*:*
canonicalubuntu_linux8.04cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:-:*:*:*
canonicalubuntu_linux8.10cpe:2.3:o:canonical:ubuntu_linux:8.10:*:*:*:*:*:*:*
canonicalubuntu_linux9.04cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*

References

Related

securityvulns 2
nessus 14
prion 1
debian 2
nvd 1
openvas 21
debiancve 1
ubuntucve 1
freebsd 1
centos 1
redhat 1
cvelist 1
veracode 1
oraclelinux 2
fedora 2
ubuntu 1
gentoo 1
securityvulns
securityvulns
MITKRB5-SA-2010-003 [CVE-2010-0629] denial of service in kadmind in older krb5 releases
2010-04-07 00:00:00
MIT Kerberos 5 kadmind DoS
2010-04-07 00:00:00
nessus
nessus
Scientific Linux Security Update : krb5 on SL5.x i386/x86_64
2012-08-01 00:00:00
CentOS 5 : krb5 (CESA-2010:0343)
2010-06-01 00:00:00
SuSE 11 Security Update : krb5 (SAT Patch Number 2235)
2010-12-02 00:00:00
prion
prion
Design/Logic Flaw
2010-04-07 15:30:00
debian
debian
[SECURITY] [DSA 2031-1] New krb5 packages fix denial of service
2010-04-11 08:43:03
[SECURITY] [DSA 2031-1] New krb5 packages fix denial of service
2010-04-11 08:43:03
nvd
nvd
CVE-2010-0629
2010-04-07 15:30:00
openvas
openvas
CentOS Update for krb5-devel CESA-2010:0343 centos5 i386
2011-08-09 00:00:00
Mandriva Update for krb5 MDVSA-2010:071 (krb5)
2010-04-16 00:00:00
CentOS Update for krb5-devel CESA-2010:0343 centos5 i386
2011-08-09 00:00:00
debiancve
debiancve
CVE-2010-0629
2010-04-07 15:30:00
ubuntucve
ubuntucve
CVE-2010-0629
2010-04-06 00:00:00
freebsd
freebsd
krb5 -- remote denial of service vulnerability
2010-04-06 00:00:00
centos
centos
krb5 security update
2010-05-28 10:47:06
redhat
redhat
(RHSA-2010:0343) Important: krb5 security and bug fix update
2010-04-06 00:00:00
cvelist
cvelist
CVE-2010-0629
2010-04-07 15:00:00
veracode
veracode
Use-after-Free
2020-04-10 00:42:35
oraclelinux
oraclelinux
krb5 security and bug fix update
2010-04-08 00:00:00
krb5 security update
2010-05-18 00:00:00
fedora
fedora
[SECURITY] Fedora 11 Update: krb5-1.6.3-29.fc11
2010-04-09 01:42:04
[SECURITY] Fedora 11 Update: krb5-1.6.3-31.fc11
2010-05-19 19:18:06
ubuntu
ubuntu
Kerberos vulnerabilities
2010-04-07 00:00:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

5.9

Confidence

High

EPSS

0.006

Percentile

78.9%

JSON
Related for CVE-2010-0629
securityvulns2nessus14prion1debian2nvd1openvas21debiancve1ubuntucve1freebsd1centos1redhat1cvelist1veracode1oraclelinux2fedora2ubuntu1gentoo1