Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-3295
HistoryDec 29, 2009 - 8:41 p.m.

CVE-2009-3295

2009-12-2920:41:19
[email protected]
web.nvd.nist.gov
7

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

High

EPSS

0.895

Percentile

98.8%

JSON

The prep_reprocess_req function in kdc/do_tgs_req.c in the cross-realm referral implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7 before 1.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a ticket request.

Affected configurations

Nvd
Node
mitkerberos_5Match1.7
VendorProductVersionCPE
mitkerberos_51.7cpe:2.3:a:mit:kerberos_5:1.7:*:*:*:*:*:*:*

Related

ubuntu 1
ubuntucve 1
fedora 5
cvelist 1
openvas 19
securityvulns 2
checkpoint_advisories 1
nessus 7
prion 1
seebug 1
cve 1
debiancve 1
suse 1
gentoo 1
osv 1
ubuntu
ubuntu
Kerberos vulnerability
2010-01-06 00:00:00
ubuntucve
ubuntucve
CVE-2009-3295
2009-12-29 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: krb5-1.7-15.fc12
2010-01-05 22:54:25
[SECURITY] Fedora 12 Update: krb5-1.7.1-2.fc12
2010-02-18 22:26:48
[SECURITY] Fedora 12 Update: krb5-1.7.1-6.fc12
2010-03-27 00:55:38
cvelist
cvelist
CVE-2009-3295
2009-12-29 16:00:00
openvas
openvas
Fedora Update for krb5 FEDORA-2009-13539
2010-01-15 00:00:00
MIT Kerberos5 KDC Cross Realm Referral DoS Vulnerability
2010-01-22 00:00:00
Fedora Update for krb5 FEDORA-2009-13539
2010-01-15 00:00:00
securityvulns
securityvulns
MITKRB5-SA-2009-003 [CVE-2009-3295] KDC denial of service in cross-realm referral processing
2009-12-29 00:00:00
MIT Kerberos 5 DoS
2009-12-29 00:00:00
checkpoint_advisories
checkpoint_advisories
MIT Kerberos KDC Cross Realm Referral Denial of Service (CVE-2009-3295)
2011-05-17 00:00:00
nessus
nessus
Fedora 12 : krb5-1.7-15.fc12 (2009-13539)
2010-02-25 00:00:00
Ubuntu 9.10 : krb5 vulnerability (USN-879-1)
2013-03-09 00:00:00
openSUSE Security Update : krb5 (krb5-1795)
2010-01-20 00:00:00
prion
prion
Null pointer dereference
2009-12-29 20:41:00
seebug
seebug
MIT Kerberos KDC跨域Referralη©ΊζŒ‡ι’ˆεΌ•η”¨ζ‹’η»ζœεŠ‘ζΌζ΄ž
2009-12-29 00:00:00
cve
cve
CVE-2009-3295
2009-12-29 20:41:19
debiancve
debiancve
CVE-2009-3295
2009-12-29 20:41:19
suse
suse
remote code execution in krb5
2010-01-19 17:05:33
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2012-01-23 00:00:00
osv
osv
krb5-1.15-1.1 on GA media
2024-06-15 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.3

Confidence

High

EPSS

0.895

Percentile

98.8%

JSON
Related for NVD:CVE-2009-3295
ubuntu1ubuntucve1fedora5cvelist1openvas19securityvulns2checkpoint_advisories1nessus7prion1seebug1cve1debiancve1suse1gentoo1osv1