Vulnerability Details CVE-2010-4022
The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote attackers to cause a denial of service (listening process termination, no new connections, and lack of updates in slave KVC) via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.087
EPSS Ranking 92.0%
CVSS Severity
CVSS v2 Score 5.0
References
- http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html
- http://secunia.com/advisories/43260
- http://secunia.com/advisories/43275
- http://securityreason.com/securityalert/8070
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-001.txt
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:025
- http://www.redhat.com/support/errata/RHSA-2011-0200.html
- http://www.securityfocus.com/archive/1/516286/100/0/threaded
- http://www.securityfocus.com/bid/46269
- http://www.securitytracker.com/id?1025035
- http://www.vupen.com/english/advisories/2011/0329
- http://www.vupen.com/english/advisories/2011/0333
- http://www.vupen.com/english/advisories/2011/0347
- http://www.vupen.com/english/advisories/2011/0464
- http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html
- http://secunia.com/advisories/43260
- http://secunia.com/advisories/43275
- http://securityreason.com/securityalert/8070
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-001.txt
- http://www.mandriva.com/security/advisories?name=MDVSA-2011:025
- http://www.redhat.com/support/errata/RHSA-2011-0200.html
- http://www.securityfocus.com/archive/1/516286/100/0/threaded
- http://www.securityfocus.com/bid/46269
- http://www.securitytracker.com/id?1025035
- http://www.vupen.com/english/advisories/2011/0329
- http://www.vupen.com/english/advisories/2011/0333
- http://www.vupen.com/english/advisories/2011/0347
- http://www.vupen.com/english/advisories/2011/0464
Products affected by CVE-2010-4022
-
cpe:2.3:a:mit:kerberos_5:1.7
-
cpe:2.3:a:mit:kerberos_5:1.8
-
cpe:2.3:a:mit:kerberos_5:1.9