Lucene search
Veracode Vulnerability DatabaseVERACODE:39717HistoryMar 12, 2023 - 8:17 p.m.
Denial Of Service (DoS)
2023-03-1220:17:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
denial of service
gss-ntlmssp
vulnerability
memory leak
application crash
parsing usernames
EPSS
0.001
Percentile
45.0%
gss-ntlmssp is vulnerable to Denial Of Service (DoS). The vulnerability exists because of a memory leak when parsing usernames to the domain portion of a username, which overrides the allocated memory area of the size of the domain name via the main gss_accept_sec_context entry point, leading to an application crash.
Related
prion
prion
Memory corruption
2023-02-14 18:15:00
osv
osv
CVE-2023-25566
2023-02-14 18:15:13
Moderate: gssntlmssp security update
2023-05-16 00:00:00
ubuntucve
ubuntucve
CVE-2023-25566
2023-02-14 00:00:00
nvd
nvd
CVE-2023-25566
2023-02-14 18:15:13
redhatcve
redhatcve
CVE-2023-25566
2023-02-21 08:59:28
cvelist
cvelist
CVE-2023-25566 GSS-NTLMSSP vulnerable to memory leak when parsing usernames
2023-02-14 17:35:48
debiancve
debiancve
CVE-2023-25566
2023-02-14 18:15:13
cve
cve
CVE-2023-25566
2023-02-14 18:15:13
mageia
mageia
Updated gssntlmssp packages fix security vulnerability
2023-03-24 08:55:49
nessus
nessus
Oracle Linux 8 : gssntlmssp (ELSA-2023-3097)
2023-05-24 00:00:00
Fedora 37 : gssntlmssp (2023-cb63c0f615)
2023-02-22 00:00:00
AlmaLinux 8 : gssntlmssp (ALSA-2023:3097)
2023-05-19 00:00:00
oraclelinux
oraclelinux
gssntlmssp security update
2023-05-24 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0108)
2023-03-28 00:00:00
Fedora: Security Advisory for gssntlmssp (FEDORA-2023-cb63c0f615)
2023-02-23 00:00:00
openSUSE: Security Advisory for gssntlmssp (openSUSE-SU-2023:0048-1)
2024-03-04 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: gssntlmssp-1.2.0-1.fc37
2023-02-22 10:15:16
redhat
redhat
(RHSA-2023:3097) Moderate: gssntlmssp security update
2023-05-16 09:15:20
almalinux
almalinux
Moderate: gssntlmssp security update
2023-05-16 00:00:00