SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2007-3999

Date: (C)2007-09-05 (M)2023-12-22

Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE

Reference:

SECTRACK-1018647

SUNALERT-103060

http://www.securityfocus.com/archive/1/478748/100/0/threaded

http://www.securityfocus.com/archive/1/479251/100/0/threaded

SUNALERT-201319

APPLE-SA-2007-11-14

FEDORA-2007-2017

FEDORA-2008-1017

SUSE-SR:2007:019

SUSE-SR:2007:024

http://lists.rpath.com/pipermail/security-announce/2007-September/000237.html

http://docs.info.apple.com/article.html?artnum=307041

http://support.avaya.com/elmodocs2/security/ASA-2007-396.htm

http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2007-006.txt

http://www.zerodayinitiative.com/advisories/ZDI-07-052.html

https://bugzilla.redhat.com/show_bug.cgi?id=250973

kerberos-rpcsecgss-bo(36437)

oval:org.mitre.oval:def:3162

oval:org.mitre.oval:def:9379

© SecPod Technologies