Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0643

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0643
Last Modified 21 Aug 2010 12:20:55
Published 28 Sep 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0643

Summary

Double free vulnerability in the krb5_rd_cred function for MIT Kerberos 5 (krb5) 1.3.1 and earlier may allow local users to execute arbitrary code.

Vulnerable Systems

Application

  • Mit Kerberos 5-1.3.1


References

CERT - TA04-247A

CERT-VN - VU#866472

XF - kerberos-krb5rdcred-double-free(17159)

TRUSTIX - 2004-0045

BID - 11078

GENTOO - GLSA-200409-09

DEBIAN - DSA-543

CONFIRM - http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2004-002-dblfree.txt

REDHAT - RHSA-2004:350

BUGTRAQ - 20040913 [OpenPKG-SA-2004.039] OpenPKG Security Advisory (kerberos)

CONECTIVA - CLA-2004:860


Last Updated: 27 May 2016 10:38:42