Vulnerability in N/a

CVE-2005-1689

Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute arbitrary code via certain error conditions.

EPSS: 0.552 (98.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

References

1014461 (vdb-entry, x_refsource_SECTRACK)
HPSBUX02152 (x_refsource_HP, vendor-advisory)
web.mit.edu/kerberos/advisories/MITKRB5-SA-2005-003-recvauth.txt (x_refsource_CONFIRM)
GLSA-200507-11 (vendor-advisory, x_refsource_GENTOO)
RHSA-2005:567 (x_refsource_REDHAT, vendor-advisory)
SUSE-SR:2005:017 (vendor-advisory, x_refsource_SUSE)
kerberos-kdc-krb5recvauth-execute-code(21055) (vdb-entry, x_refsource_XF)
101810 (vendor-advisory, x_refsource_SUNALERT)
CLA-2005:993 (vendor-advisory, x_refsource_CONECTIVA)
RHSA-2005:562 (x_refsource_REDHAT, vendor-advisory)