What is CVE-2010-0629?

CVE-2010-0629 is a medium-severity vulnerability in Mit Kerberos_5, classified under Use After Free. CVSS score: 6.5/10. Published 2010-04-07.

How severe is CVE-2010-0629?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Use After Free in Mit Kerberos_5

CVE-2010-0629

Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that se…

Vulnerability class: Use-After-Free

EPSS: 0.023 (85.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Mit Kerberos_5
Canonical Ubuntu_linux — versions 8.10, 9.04, 8.04
Fedoraproject Fedora — versions 11
Opensuse — versions 11.0, 11.1
Suse Linux_enterprise — versions 11.0
N/a — versions n/a

Weakness classification (CWE)

CWE-416 — Use After Free

References

cve@mitre.org (x_refsource_CONFIRM, Exploit, Mailing List, Issue Tracking)
cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
FEDORA-2010-6108 (vendor-advisory, x_refsource_FEDORA, Mailing List)
SUSE-SR:2010:009 (vendor-advisory, Mailing List, x_refsource_SUSE)
39264 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
39290 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
39315 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
39324 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
39367 (x_refsource_SECUNIA, Broken Link, third-party-advisory)
1023821 (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK, Broken Link)

Frequently asked questions

What is CVE-2010-0629?: CVE-2010-0629 is a medium-severity vulnerability in Mit Kerberos_5, classified under Use After Free. CVSS score: 6.5/10. Published 2010-04-07.
How severe is CVE-2010-0629?: Medium severity. CVSS v3 base score is 6.5 out of 10.