CVE Vulnerabilities

CVE-2000-0549

Published: Jun 09, 2000 | Modified: Jan 21, 2020
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Kerberos 4 KDC program does not properly check for null termination of AUTH_MSG_KDC_REQUEST requests, which allows remote attackers to cause a denial of service via a malformed request.

Affected Software

Name Vendor Start Version End Version
Cygnus_network_security Cygnus 4.0 4.0
Kerbnet Cygnus 5.0 5.0
Kerberos Mit 4.0 4.0
Kerberos_5 Mit 1.0 1.0
Kerberos_5 Mit 1.1 1.1
Kerberos_5 Mit 1.1.1 1.1.1

References