Back to search
CVE-2017-17439
Published: Dec 6, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
In Heimdal through 7.4, remote unauthenticated attackers are able to crash the KDC by sending a crafted UDP packet containing empty data fields for client name or realm. The parser would unconditionally dereference NULL pointers in that case, leading to a segmentation fault. This is related to the _kdc_as_rep function in kdc/kerberos5.c and the der_length_visible_string function in lib/asn1/der_length.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878144
x_refsource_CONFIRM
http://www.h5l.org/pipermail/heimdal-announce/2017-December/000008.html
x_refsource_CONFIRM
https://github.com/heimdal/heimdal/issues/353
x_refsource_CONFIRM
http://h5l.org/advisories.html?show=2017-12-08
x_refsource_CONFIRM
DSA-4055
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now