PT-2004-1848 · Mit · Mit Kerberos 5
Publicado
2004-09-10
·
Atualizado
2024-02-02
·
CVE-2004-0772
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
MIT Kerberos 5 (krb5) versions 1.2.8 and earlier
Description
The issue is related to double free vulnerabilities in error handling code in krb524d, which may allow remote attackers to execute arbitrary code.
Recommendations
For MIT Kerberos 5 (krb5) versions 1.2.8 and earlier, update to a version later than 1.2.8 to resolve the issue.
At the moment, there is no information about other specific mitigation measures for this issue.
Correção
Double Free
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Mit Kerberos 5