Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0060HistoryFeb 19, 2003 - 5:00 a.m.
CVE-2003-0060
2003-02-1905:00:00
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.088
Percentile
94.6%
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | krb5 | < 1.2.4 | krb5_1.2.4_all.deb |
| Debian | 11 | all | krb5 | < 1.2.4 | krb5_1.2.4_all.deb |
| Debian | 999 | all | krb5 | < 1.2.4 | krb5_1.2.4_all.deb |
| Debian | 13 | all | krb5 | < 1.2.4 | krb5_1.2.4_all.deb |
Related
nvd
nvd
CVE-2003-0060
2003-02-19 05:00:00
cvelist
cvelist
CVE-2003-0060
2003-02-01 05:00:00
cert
cert
MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 00:00:00
cve
cve
CVE-2003-0060
2003-02-19 05:00:00
nessus
nessus
RHEL 2.1 : krb5 (RHSA-2003:052)
2004-07-06 00:00:00
Kerberos 5 < 1.3.5 Multiple Vulnerabilities
2003-04-03 00:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.088
Percentile
94.6%
Related for DEBIANCVE:CVE-2003-0060