Off-by-one error in the krb5_encode_krbsecretkey function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) 1.6.x through 1.11.x before 1.11.6 and 1.12.x before 1.12.2 allows remote authenticated users to cause a denial of service (buffer overflow) or possibly execute arbitrary code via a series of cpw -keepold commands.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Kerberos_5 | Mit | 1.6 (including) | 1.6 (including) |
Kerberos_5 | Mit | 1.6.1 (including) | 1.6.1 (including) |
Kerberos_5 | Mit | 1.6.2 (including) | 1.6.2 (including) |
Kerberos_5 | Mit | 1.7 (including) | 1.7 (including) |
Kerberos_5 | Mit | 1.7.1 (including) | 1.7.1 (including) |
Kerberos_5 | Mit | 1.8 (including) | 1.8 (including) |
Kerberos_5 | Mit | 1.8.1 (including) | 1.8.1 (including) |
Kerberos_5 | Mit | 1.8.2 (including) | 1.8.2 (including) |
Kerberos_5 | Mit | 1.8.3 (including) | 1.8.3 (including) |
Kerberos_5 | Mit | 1.8.4 (including) | 1.8.4 (including) |
Kerberos_5 | Mit | 1.8.5 (including) | 1.8.5 (including) |
Kerberos_5 | Mit | 1.8.6 (including) | 1.8.6 (including) |
Kerberos_5 | Mit | 1.9 (including) | 1.9 (including) |
Kerberos_5 | Mit | 1.9.1 (including) | 1.9.1 (including) |
Kerberos_5 | Mit | 1.9.2 (including) | 1.9.2 (including) |
Kerberos_5 | Mit | 1.9.3 (including) | 1.9.3 (including) |
Kerberos_5 | Mit | 1.9.4 (including) | 1.9.4 (including) |
Kerberos_5 | Mit | 1.10 (including) | 1.10 (including) |
Kerberos_5 | Mit | 1.10.1 (including) | 1.10.1 (including) |
Kerberos_5 | Mit | 1.10.2 (including) | 1.10.2 (including) |
Kerberos_5 | Mit | 1.10.3 (including) | 1.10.3 (including) |
Kerberos_5 | Mit | 1.10.4 (including) | 1.10.4 (including) |
Kerberos_5 | Mit | 1.11 (including) | 1.11 (including) |
Kerberos_5 | Mit | 1.11.1 (including) | 1.11.1 (including) |
Kerberos_5 | Mit | 1.11.2 (including) | 1.11.2 (including) |
Kerberos_5 | Mit | 1.11.3 (including) | 1.11.3 (including) |
Kerberos_5 | Mit | 1.11.4 (including) | 1.11.4 (including) |
Kerberos_5 | Mit | 1.11.5 (including) | 1.11.5 (including) |
Kerberos_5 | Mit | 1.12 (including) | 1.12 (including) |
Kerberos_5 | Mit | 1.12.1 (including) | 1.12.1 (including) |