Lucene search

K

Veracode Vulnerability DatabaseVERACODE:24614

HistoryApr 10, 2020 - 12:59 a.m.

Denial Of Service (DoS)

2020-04-1000:59:11

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

10

EPSS

0.029

Percentile

90.8%

krb5 is vulnerable to denial of service (DoS). The vulnerability exists through the way MIT Kerberos KDC processed certain principal names when the KDC was configured to use an LDAP back end. A remote attacker could use this flaw to cause the KDC to hang via a specially-crafted request.

References

lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html

mailman.mit.edu/pipermail/kerberos/2010-December/016800.html

secunia.com/advisories/43260

secunia.com/advisories/43273

secunia.com/advisories/43275

secunia.com/advisories/46397

securityreason.com/securityalert/8073

web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt

www.mandriva.com/security/advisories?name=MDVSA-2011:024

www.mandriva.com/security/advisories?name=MDVSA-2011:025

www.redhat.com/support/errata/RHSA-2011-0199.html

www.redhat.com/support/errata/RHSA-2011-0200.html

www.securityfocus.com/archive/1/516299/100/0/threaded

www.securityfocus.com/archive/1/520102/100/0/threaded

www.securityfocus.com/bid/46265

www.securitytracker.com/id?1025037

www.vmware.com/security/advisories/VMSA-2011-0012.html

www.vupen.com/english/advisories/2011/0330

www.vupen.com/english/advisories/2011/0333

www.vupen.com/english/advisories/2011/0347

www.vupen.com/english/advisories/2011/0464

access.redhat.com/errata/RHSA-2011:0199

access.redhat.com/security/updates/classification/#important

exchange.xforce.ibmcloud.com/vulnerabilities/65324

EPSS

0.029

Percentile

90.8%

Related for VERACODE:24614

debiancve1 nvd1 prion1 cve1 ubuntucve1 cvelist1 nessus19 openvas42 centos1 securityvulns1 redhat2 oraclelinux2 freebsd1 threatpost1 ubuntu1 fedora10 gentoo1 vmware2