QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-6143

Back to search

CVE-2006-6143

Published: Jan 10, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The RPC library in Kerberos 5 1.4 through 1.4.4, and 1.5 through 1.5.1, as used in Kerberos administration daemon (kadmind) and other products that use this library, calls an uninitialized function pointer in freed memory, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

VendorProductVersions

n/a

n/a

affected
n/a

References

1017493
vdb-entry
x_refsource_SECTRACK
FEDORA-2007-034
vendor-advisory
x_refsource_FEDORA
31281
vdb-entry
x_refsource_OSVDB
24966
third-party-advisory
x_refsource_SECUNIA
VU#481564
third-party-advisory
x_refsource_CERT-VN
USN-408-1
vendor-advisory
x_refsource_UBUNTU
TA07-009B
third-party-advisory
x_refsource_CERT
23696
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2007:004
vendor-advisory
x_refsource_SUSE
23706
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:008
vendor-advisory
x_refsource_MANDRIVA
23903
third-party-advisory
x_refsource_SECUNIA
21970
vdb-entry
x_refsource_BID
23667
third-party-advisory
x_refsource_SECUNIA
GLSA-200701-21
vendor-advisory
x_refsource_GENTOO
OpenPKG-SA-2007.006
vendor-advisory
x_refsource_OPENPKG
FEDORA-2007-033
vendor-advisory
x_refsource_FEDORA
TA07-109A
third-party-advisory
x_refsource_CERT
23707
third-party-advisory
x_refsource_SECUNIA
ADV-2007-0111
vdb-entry
x_refsource_VUPEN
23772
third-party-advisory
x_refsource_SECUNIA
23701
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2007-04-19
vendor-advisory
x_refsource_APPLE
ADV-2007-1470
vdb-entry
x_refsource_VUPEN
kerberos-rpc-code-execution(31422)
vdb-entry
x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now