Lucene search
HistoryFeb 19, 2003 - 5:00 a.m.
CVE-2003-0060
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.088
Percentile
94.6%
Format string vulnerabilities in the logging routines for MIT Kerberos V5 Key Distribution Center (KDC) before 1.2.5 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in Kerberos principal names.
Affected configurations
Node
mitkerberos_5Match1.2.1
ORmitkerberos_5Match1.2.2
ORmitkerberos_5Match1.2.3
ORmitkerberos_5Match1.2.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mit | kerberos_5 | 1.2.1 | cpe:2.3:a:mit:kerberos_5:1.2.1:*:*:*:*:*:*:* |
| mit | kerberos_5 | 1.2.2 | cpe:2.3:a:mit:kerberos_5:1.2.2:*:*:*:*:*:*:* |
| mit | kerberos_5 | 1.2.3 | cpe:2.3:a:mit:kerberos_5:1.2.3:*:*:*:*:*:*:* |
| mit | kerberos_5 | 1.2.4 | cpe:2.3:a:mit:kerberos_5:1.2.4:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2003-0060
2003-02-01 05:00:00
debiancve
debiancve
CVE-2003-0060
2003-02-19 05:00:00
cert
cert
MIT Kerberos V5 KDC logging routines use unsafe format strings
2003-01-31 00:00:00
cve
cve
CVE-2003-0060
2003-02-19 05:00:00
nessus
nessus
RHEL 2.1 : krb5 (RHSA-2003:052)
2004-07-06 00:00:00
Kerberos 5 < 1.3.5 Multiple Vulnerabilities
2003-04-03 00:00:00
redhat
redhat
(RHSA-2003:052) krb5 security update
2003-03-27 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.8
Confidence
Low
EPSS
0.088
Percentile
94.6%
Related for NVD:CVE-2003-0060