Lucene search

K

MitreCVELIST:CVE-2014-4342

HistoryJul 20, 2014 - 10:00 a.m.

CVE-2014-4342

2014-07-2010:00:00

mitre

www.cve.org

7

AI Score

6.2

Confidence

Low

EPSS

0.196

Percentile

96.3%

MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session.

References

advisories.mageia.org/MGASA-2014-0345.html

krbdev.mit.edu/rt/Ticket/Display.html?id=7949

rhn.redhat.com/errata/RHSA-2015-0439.html

secunia.com/advisories/59102

secunia.com/advisories/60082

www.debian.org/security/2014/dsa-3000

www.mandriva.com/security/advisories?name=MDVSA-2014:165

www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

www.securityfocus.com/bid/68908

www.securitytracker.com/id/1030706

exchange.xforce.ibmcloud.com/vulnerabilities/94903

github.com/krb5/krb5/commit/e6ae703ae597d798e310368d52b8f38ee11c6a73

AI Score

6.2

Confidence

Low

EPSS

0.196

Percentile

96.3%

Related for CVELIST:CVE-2014-4342

veracode1 prion1 f52 nvd1 cve1 checkpoint_advisories1 nessus20 debiancve1 ubuntucve1 openvas16 debian3 osv2 mageia1 fedora5 ibm1 centos2 oraclelinux2 amazon1 redhat2 ubuntu1 oracle1