CVE-2023-25563

Name of the Vulnerable Software and Affected Versions GSS-NTLMSSP versions prior to 1.2.0

Description GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Multiple out-of-bounds reads when decoding NTLM fields can trigger a denial of service. A 32-bit integer overflow condition can lead to incorrect checks of consistency of length of internal buffers. This vulnerability can be triggered via the main gss accept sec context entry point if the application allows tokens greater than 4GB in length, leading to a large, up to 65KB, out-of-bounds read which could cause a denial-of-service if it reads from unmapped memory.

Recommendations For versions prior to 1.2.0, update to version 1.2.0 to patch the out-of-bounds reads. As a temporary workaround, consider restricting the application to accept tokens less than 4GB in length to minimize the risk of exploitation.