QwikSec

Security Database

CVE

CWE

Training

CVE-2011-0281

Published: Feb 10, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \n sequence.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vendor-advisory

x_refsource_MANDRIVA

vdb-entry

x_refsource_BID

20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_VUPEN

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_SECUNIA

http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt

x_refsource_CONFIRM

20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_SECTRACK

SUSE-SR:2011:004

vendor-advisory

x_refsource_SUSE

http://www.vmware.com/security/advisories/VMSA-2011-0012.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

vdb-entry

x_refsource_VUPEN

third-party-advisory

x_refsource_SREASON

kerberos-ldap-descriptor-dos(65324)

vdb-entry

x_refsource_XF

vdb-entry

x_refsource_VUPEN

[kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server

mailing-list

x_refsource_MLIST

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.