[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-1189Date: (C)2004-12-31   (M)2023-12-22


The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.2
Exploit Score: 3.9
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
2004-0069
http://marc.info/?l=bugtraq&m=110358420909358&w=2
http://marc.info/?l=bugtraq&m=110548298407590&w=2
APPLE-SA-2005-08-15
APPLE-SA-2005-08-17
CLA-2005:917
MDKSA-2004:156
RHSA-2005:012
RHSA-2005:045
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-004-pwhist.txt
kerberos-libkadm5srv-bo(18621)
oval:org.mitre.oval:def:11911

CWE    1
CWE-787

© SecPod Technologies