Vulnerability Details CVE-2011-0283
The Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed request packet that does not trigger a response packet.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://secunia.com/advisories/43260
- http://securityreason.com/securityalert/8073
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt
- http://www.securityfocus.com/archive/1/516299/100/0/threaded
- http://www.securityfocus.com/bid/46272
- http://www.securitytracker.com/id?1025037
- http://www.vupen.com/english/advisories/2011/0330
- http://secunia.com/advisories/43260
- http://securityreason.com/securityalert/8073
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt
- http://www.securityfocus.com/archive/1/516299/100/0/threaded
- http://www.securityfocus.com/bid/46272
- http://www.securitytracker.com/id?1025037
- http://www.vupen.com/english/advisories/2011/0330
Products affected by CVE-2011-0283
-
cpe:2.3:a:mit:kerberos_5:1.9