Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1189

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-1189
Last Modified 21 Aug 2010 12:22:00
Published 31 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-1189

Summary

The add_to_history function in svr_principal.c in libkadm5srv for MIT Kerberos 5 (krb5) up to 1.3.5, when performing a password change, does not properly track the password policy's history count and the maximum number of keys, which can cause an array index out-of-bounds error and may allow authenticated users to execute arbitrary code via a heap-based buffer overflow.

Vulnerable Systems

Application

  • Mit Kerberos 5-1.2

  • Mit Kerberos 5-1.3.1

  • Mit Kerberos 5-1.3.5


References

CONFIRM - http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2004-004-pwhist.txt

BUGTRAQ - 20041220 MITKRB5-SA-2004-004: heap overflow in libkadm5srv

XF - kerberos-libkadm5srv-bo(18621)

TRUSTIX - 2004-0069

REDHAT - RHSA-2005:045

REDHAT - RHSA-2005:012

BUGTRAQ - 20050110 [USN-58-1] MIT Kerberos server vulnerability

CONECTIVA - CLA-2005:917

MANDRAKE - MDKSA-2004:156

APPLE - APPLE-SA-2005-08-15

APPLE - APPLE-SA-2005-08-17


Last Updated: 27 May 2016 10:38:56