The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of MIT krb5

MIT krb5: privilege escalation via EKU Cert Missing SAN
An attacker can bypass restrictions via EKU Cert Missing SAN of MIT krb5, in order to escalate his privileges...
CVE-2017-7562, FEDORA-2017-bf74db7147, RHSA-2018:0666-01, SUSE-SU-2018:1425-1, VIGILANCE-VUL-23635
MIT Kerberos: assertion error via krb5kdc S4U2Self/S4U2Proxy
An attacker can force an assertion error via krb5kdc S4U2Self/S4U2Proxy of MIT Kerberos, in order to trigger a denial of service...
bulletinjul2018, CVE-2017-11368, DLA-1058-1, FEDORA-2017-71c47e1e82, FEDORA-2017-8e9d9771c4, FEDORA-2017-e5b36383f4, RHSA-2018:0666-01, VIGILANCE-VUL-23349
MIT krb5: security improvement via DES disabling
The security of MIT krb5 was improved by disabling by default the DES encryption algorithm, which is now to be considered weak...
VIGILANCE-VUL-20637
MIT krb5: buffer overflow via libkrad
An attacker can generate a buffer overflow via libkrad of MIT krb5, in order to trigger a denial of service, and possibly to run code...
FEDORA-2016-0b966047e1, FEDORA-2016-335ed87353, FEDORA-2016-d18f993ab6, VIGILANCE-VUL-19992
MIT krb5: denial of service via KDC TGT Only
An attacker can send a malicious query to MIT krb5, in order to trigger a KDC denial of service...
bulletinapr2017, CVE-2016-3120, DLA-1265-1, FEDORA-2016-0674a3c372, FEDORA-2016-4a36663643, FEDORA-2016-f405b25923, openSUSE-SU-2016:2268-1, RHSA-2016:2591-02, VIGILANCE-VUL-20194
MIT krb5: NULL pointer dereference via LDAP process_db_args
An attacker, with permission to modify a principal entry, can force a NULL pointer to be dereferenced in the LDAP KDB module of MIT krb5, in order to trigger a denial of service...
CVE-2016-3119, DLA-1265-1, FEDORA-2016-56840babc3, FEDORA-2016-ed99cb602e, openSUSE-SU-2016:0947-1, openSUSE-SU-2016:1072-1, RHSA-2016:2591-02, VIGILANCE-VUL-19206
MIT krb5: three vulnerabilities of kadmin
An attacker can use several vulnerabilities of kadmin of MIT krb5...
1302617, 1302632, 1302642, CVE-2015-8629, CVE-2015-8630, CVE-2015-8631, DSA-3466-1, FEDORA-2016-35492207cb, FEDORA-2016-d9d394d999, openSUSE-SU-2016:0406-1, openSUSE-SU-2016:0501-1, RHSA-2016:0493-01, RHSA-2016:0532-01, VIGILANCE-VUL-18853
MIT krb5: memory corruption via IAKERB
An attacker can generate a memory corruption in IAKERB of MIT krb5, in order to trigger a denial of service, and possibly to run code...
CVE-2015-2698, FEDORA-2015-1b9c33d713, FEDORA-2015-200d2dfd9f, FEDORA-2015-58ae075703, openSUSE-SU-2015:2055-1, openSUSE-SU-2015:2376-1, USN-2810-1, VIGILANCE-VUL-18261
MIT krb5: three vulnerabilities
An attacker can use several vulnerabilities of MIT krb5...
CVE-2015-2695, CVE-2015-2696, CVE-2015-2697, DSA-2019-131, DSA-3395-1, DSA-3395-2, FEDORA-2015-1b9c33d713, FEDORA-2015-200d2dfd9f, openSUSE-SU-2015:1928-1, openSUSE-SU-2015:1997-1, SUSE-SU-2015:1897-1, SUSE-SU-2015:1898-1, SUSE-SU-2015:1898-2, USN-2810-1, VIGILANCE-VUL-18241
MIT krb5: bypassing of requires_preauth
An attacker can use a brute force on MIT krb5, in order to guess the user's password...
783557, CVE-2015-2694, FEDORA-2015-7878, RHSA-2015:2154-07, USN-2810-1, VIGILANCE-VUL-16872
Our database contains other pages. You can request a free trial to read them.

Display information about MIT krb5: