CVE-2000-0549

2000-10-1304:00:00

mitre

www.cve.org

AI Score

6.7

Confidence

High

EPSS

0.01

Percentile

83.9%

JSON

Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.

References

archives.neohapsis.com/archives/bugtraq/2000-06/0064.html

ciac.llnl.gov/ciac/bulletins/k-051.shtml

web.mit.edu/kerberos/www/advisories/krb4kdc.txt

www.cert.org/advisories/CA-2000-11.html

www.redhat.com/support/errata/RHSA-2000-031.html