CVE-2010-1321
MEDIUM severity · CVSS 6.8 · CWE-476
6.8CVSS MEDIUM
Summary
The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5 (aka krb5) through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not properly check for invalid GSS-API tokens, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an AP-REQ message in which the authenticator's checksum field is missing.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impactNone
Integrity impactNone
Availability impact—
Exploit probability (EPSS)7%
AV:N/AC:L/Au:S/C:N/I:N/A:C
Affected products we track (6)
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427
- http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041615.htmlAdvisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041645.htmlAdvisory
- http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041654.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.htmlAdvisory