--%> SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)
[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2007-3999

Date: (C)2007-09-05   (M)2017-10-04
 
CVSS Score: 10.0Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE











Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.

Reference:
SECTRACK-1018647
SUNALERT-103060
2007-0026
http://www.securityfocus.com/archive/1/archive/1/478748/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/479251/100/0/threaded
SUNALERT-201319
BID-25534
BID-26444
SECUNIA-26676
SECUNIA-26680
SECUNIA-26684
SECUNIA-26691
SECUNIA-26697
SECUNIA-26699
SECUNIA-26700
SECUNIA-26705
SECUNIA-26713
SECUNIA-26728
SECUNIA-26783
SECUNIA-26792
SECUNIA-26822
SECUNIA-26896
SECUNIA-26987
SECUNIA-27043
SECUNIA-27081
SECUNIA-27146
SECUNIA-27643
SECUNIA-27756
SECUNIA-29247
SECUNIA-29270
SREASON-3092
ADV-2007-3051
ADV-2007-3052
ADV-2007-3060
ADV-2007-3868
ADV-2008-0803
APPLE-SA-2007-11-14
DSA-1367
DSA-1368
FEDORA-2007-2017
FEDORA-2008-1017
GLSA-200709-01
GLSA-200710-01
IAVM:2007-T-0037
MDKSA-2007:174
MDKSA-2007:181
RHSA-2007:0858
RHSA-2007:0913
RHSA-2007:0951
SUSE-SR:2007:019
SUSE-SR:2007:024
TA07-319A
USN-511-1
VU#883632
http://lists.rpath.com/pipermail/security-announce/2007-September/000237.html
http://docs.info.apple.com/article.html?artnum=307041
http://support.avaya.com/elmodocs2/security/ASA-2007-396.htm
http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2007-006.txt
http://www.zerodayinitiative.com/advisories/ZDI-07-052.html
https://bugzilla.redhat.com/show_bug.cgi?id=250973
kerberos-rpcsecgss-bo(36437)

CPE    12
cpe:/a:mit:kerberos:5-1.6.2
cpe:/a:mit:kerberos:5-1.4
cpe:/a:mit:kerberos:5-1.4.1
cpe:/a:mit:kerberos:5-1.4.3
...
CWE    1
CWE-119

© 2013 SecPod Technologies