CVE-2008-0947

Published: Mar 19, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in the RPC library used by libgssrpc and kadmind in MIT Kerberos 5 (krb5) 1.4 through 1.6.3 allows remote attackers to execute arbitrary code by triggering a large number of open file descriptors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

3752

third-party-advisory

x_refsource_SREASON

TA08-079B

third-party-advisory

x_refsource_CERT

29457

third-party-advisory

x_refsource_SECUNIA

MDVSA-2008:069

vendor-advisory

x_refsource_MANDRIVA

20080318 MITKRB5-SA-2008-002: array overrun in RPC library used by kadmin (resend, corrected subject)

mailing-list

x_refsource_BUGTRAQ

29464

third-party-advisory

x_refsource_SECUNIA

28302

vdb-entry

x_refsource_BID

FEDORA-2008-2637

vendor-advisory

x_refsource_FEDORA

http://wiki.rpath.com/Advisories:rPSA-2008-0112

x_refsource_CONFIRM

http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022542.html

x_refsource_CONFIRM

SSRT100495

vendor-advisory

x_refsource_HP

29451

third-party-advisory

x_refsource_SECUNIA

29663

third-party-advisory

x_refsource_SECUNIA

FEDORA-2008-2647

vendor-advisory

x_refsource_FEDORA

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0112

x_refsource_CONFIRM

29438

third-party-advisory

x_refsource_SECUNIA

RHSA-2008:0164

vendor-advisory

x_refsource_REDHAT

MDVSA-2008:070

vendor-advisory

x_refsource_MANDRIVA

ADV-2008-0922

vdb-entry

x_refsource_VUPEN

29435

third-party-advisory

x_refsource_SECUNIA

oval:org.mitre.oval:def:10984

vdb-entry

signature

x_refsource_OVAL

20080319 rPSA-2008-0112-1 krb5 krb5-server krb5-services krb5-test krb5-workstation

mailing-list

x_refsource_BUGTRAQ

29428

third-party-advisory

x_refsource_SECUNIA

DSA-1524

vendor-advisory

x_refsource_DEBIAN

20080318 MITKRB5-SA-2008-001: double-free, uninitialized data vulnerabilities in krb5kdc

mailing-list

x_refsource_BUGTRAQ

http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5022520.html

x_refsource_CONFIRM

SUSE-SA:2008:016

vendor-advisory

x_refsource_SUSE

29516

third-party-advisory

x_refsource_SECUNIA

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2008-002.txt

x_refsource_CONFIRM

29462

third-party-advisory

x_refsource_SECUNIA

29424

third-party-advisory

x_refsource_SECUNIA

1019631

vdb-entry

x_refsource_SECTRACK

USN-587-1

vendor-advisory

x_refsource_UBUNTU

ADV-2008-1102

vdb-entry

x_refsource_VUPEN

GLSA-200803-31

vendor-advisory

x_refsource_GENTOO

HPSBOV02682

vendor-advisory

x_refsource_HP

VU#374121

third-party-advisory

x_refsource_CERT-VN

krb5-rpclibrary-bo(41273)

vdb-entry

x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-0947

Description

Affected Products

References