Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0094

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0094
Last Modified 05 Sep 2008 04:23:15
Published 12 Feb 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0094

Summary

Buffer overflow in kdc_reply_cipher of libkrb (Kerberos 4 authentication library) in NetBSD 1.5 and FreeBSD 4.2 and earlier, as used in Kerberised applications such as telnetd and login, allows local users to gain root privileges.

Vulnerable Systems

Operating System

  • Freebsd 1.5


References

NETBSD - NetBSD-SA2000-017

XF - kerberos4-auth-packet-overflow(5734)

FREEBSD - FreeBSD-SA-01:25


Last Updated: 27 May 2016 10:36:08