Back to search
CVE-2007-2798
Published: Jun 26, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the rename_principal_2_svc function in kadmind for MIT Kerberos 1.5.3, 1.6.1, and other versions allows remote authenticated users to execute arbitrary code via a crafted request to rename a principal.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2007-2732
vdb-entry
x_refsource_VUPEN
25894
third-party-advisory
x_refsource_SECUNIA
25801
third-party-advisory
x_refsource_SECUNIA
USN-477-1
vendor-advisory
x_refsource_UBUNTU
ADV-2007-3229
vdb-entry
x_refsource_VUPEN
20070629 TSLSA-2007-0021 - kerberos5
mailing-list
x_refsource_BUGTRAQ
25911
third-party-advisory
x_refsource_SECUNIA
25888
third-party-advisory
x_refsource_SECUNIA
RHSA-2007:0384
vendor-advisory
x_refsource_REDHAT
25890
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2337
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:1726
vdb-entry
signature
x_refsource_OVAL
APPLE-SA-2007-07-31
vendor-advisory
x_refsource_APPLE
ADV-2007-2491
vdb-entry
x_refsource_VUPEN
26228
third-party-advisory
x_refsource_SECUNIA
ADV-2010-1574
vdb-entry
x_refsource_VUPEN
26033
third-party-advisory
x_refsource_SECUNIA
GLSA-200707-11
vendor-advisory
x_refsource_GENTOO
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2007-005.txt
x_refsource_CONFIRM
25800
third-party-advisory
x_refsource_SECUNIA
24653
vdb-entry
x_refsource_BID
SSRT100107
vendor-advisory
x_refsource_HP
DSA-1323
vendor-advisory
x_refsource_DEBIAN
2007-0021
vendor-advisory
x_refsource_TRUSTIX
ADV-2007-2370
vdb-entry
x_refsource_VUPEN
TA07-177A
third-party-advisory
x_refsource_CERT
SUSE-SA:2007:038
vendor-advisory
x_refsource_SUSE
102985
vendor-advisory
x_refsource_SUNALERT
25870
third-party-advisory
x_refsource_SECUNIA
MDKSA-2007:137
vendor-advisory
x_refsource_MANDRIVA
26909
third-party-advisory
x_refsource_SECUNIA
https://issues.rpath.com/browse/RPL-1499
x_refsource_CONFIRM
27706
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7550
vdb-entry
signature
x_refsource_OVAL
kerberos-renameprincipal2svc-bo(35080)
vdb-entry
x_refsource_XF
http://docs.info.apple.com/article.html?artnum=306172
x_refsource_CONFIRM
RHSA-2007:0562
vendor-advisory
x_refsource_REDHAT
HPSBUX02544
vendor-advisory
x_refsource_HP
oval:org.mitre.oval:def:9996
vdb-entry
signature
x_refsource_OVAL
VU#554257
third-party-advisory
x_refsource_CERT-VN
20070628 FLEA-2007-0029-1: krb5 krb5-workstation
mailing-list
x_refsource_BUGTRAQ
25159
vdb-entry
x_refsource_BID
20070626 MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow
mailing-list
x_refsource_BUGTRAQ
25814
third-party-advisory
x_refsource_SECUNIA
1018295
vdb-entry
x_refsource_SECTRACK
25821
third-party-advisory
x_refsource_SECUNIA
25875
third-party-advisory
x_refsource_SECUNIA
40346
third-party-advisory
x_refsource_SECUNIA
36595
vdb-entry
x_refsource_OSVDB
26235
third-party-advisory
x_refsource_SECUNIA
20070626 Multiple Vendor Kerberos kadmind Rename Principal Buffer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now