CVE-2002-1235

 

Published at: - 04-11-2002 06:00

Last modified: - 19-10-2022 04:59

Total changes: - 2

Description

The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:C/I:C/A:C

 

Verification logic

 

Reference

• CA-2002-29-Patch, Third Party Advisory, US Government Resource
• DSA-184-Patch, Third Party Advisory
• 6024-Patch, Third Party Advisory, VDB Entry, Vendor Advisory
• kerberos-kadmind-bo(10430)-Third Party Advisory
• http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2002-002-kadm4.txt
• http://web.mit.edu/kerberos/www/advisories/2002-002-kadm4_attacksig.txt
• http://www.pdc.kth.se/heimdal/
• VU#875073-Third Party Advisory, US Government Resource
• MDKSA-2002:073-Third Party Advisory
• DSA-185-Third Party Advisory
• DSA-183-Third Party Advisory
• RHSA-2002:242-Third Party Advisory
• NetBSD-SA2002-026-Third Party Advisory
• 20021027 KRB5-SORCERER2002-10-27 Security Update-Third Party Advisory
• CLA-2002:534-Third Party Advisory
• 20021027 Re: Buffer overflow in kadmind4-Mailing List, Third Party Advisory
• 20021028 GLSA: krb5-Mailing List, Third Party Advisory
• 20021023 MITKRB5-SA-2002-002: Buffer overflow in kadmind4-Mailing List, Third Party Advisory
• 20021026 Updated: MITKRB5-SA-2002-002: Buffer overflow in kadmind4-Mailing List, Third Party Advisory

 

Keywords

NVD

 

CVE-2002-1235

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures