Vendor Dictionary: MIT

MIT

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

MIT

MIT

Kerberos: 4.0 patch 10; OSVDB ID: 4875 MIT Kerberos 4/5 e_msg Variable kerb_err_reply Function Remote Overflow; krb5-1.0.x; OSVDB ID: 4875 MIT Kerberos 4/5 e_msg Variable kerb_err_reply Function Remote Overflow; krb5-1.1; OSVDB ID: 4875 MIT Kerberos 4/5 e_msg Variable kerb_err_reply Function Remote Overflow; krb5-1.1.1; OSVDB ID: 4875 MIT Kerberos 4/5 e_msg Variable kerb_err_reply Function Remote Overflow; 5-1.3.1; OSVDB ID: 9409 MIT Kerberos 5 krb524d Double-free Error Condition Code Execution; OSVDB ID: 9408 MIT Kerberos 5 krb524d krb5_rd_cred() Arbitrary Code Execution; 1.3.3; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS

Kerneros 5: 5.0 -1.0.x; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink

krb5: 1.2.2; OSVDB ID: 809 Multiple BSD Telnet telrcv Functin Remote Command Execution; 1.7; OSVDB ID: 61423 Kerberos KDC Cross-Realm Referral kdc/do_tgs_req.c prep_reprocess_req Function Ticket Request Remote DoS

Kerberos FTP: Unknown or Unspecified; OSVDB ID: 4898 Multiple Vendors FTP Client Pipe Character Arbitrary Code Execution

Kerberos 4: 1.0; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.1; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 4.0; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; OSVDB ID: 4880 MIT Kerberos 4 Key Server Session Key Masquerade; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 4.0 patch 10; OSVDB ID: 4884 MIT Kerberos 5 krb425_conv_principal Function Remote Overflow; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; Patch 10 and below; OSVDB ID: 4886 MIT Kerberos 4 KDC AUTH_MSG_KDC_REQUEST DoS

Kerberos 5: 1.0; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.0.6; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.1; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.1.1; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.2; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.2.1; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 1.2.2; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.2.3; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.2.4; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4896 MIT Kerberos 5 ASN.1 Decoder Heap Corruption DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; OSVDB ID: 4879 MIT Kerberos 5 Key Distribution Center Format String Logging; 1.2.5; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 1.2.6; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; OSVDB ID: 4870 Multiple Kerberos Compatibility Administration Daemon Overflow; 5.0 -1.0.x; OSVDB ID: 4876 MIT Kerberos 5 krshd Overflow; 5.0 -1.1.1; OSVDB ID: 4885 MIT Kerberos 5 GSSFTP FTP Command Restriction Issue; OSVDB ID: 4876 MIT Kerberos 5 krshd Overflow; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 5.0-1.0.x; OSVDB ID: 4884 MIT Kerberos 5 krb425_conv_principal Function Remote Overflow; 5.0-1.1.1; OSVDB ID: 4884 MIT Kerberos 5 krb425_conv_principal Function Remote Overflow; 5.0 -1.1; OSVDB ID: 4885 MIT Kerberos 5 GSSFTP FTP Command Restriction Issue; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 5.0 -1.2beta1; OSVDB ID: 4885 MIT Kerberos 5 GSSFTP FTP Command Restriction Issue; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 5.0 -1.2beta2; OSVDB ID: 4885 MIT Kerberos 5 GSSFTP FTP Command Restriction Issue; OSVDB ID: 4890 KTH Kerberos 4 Ticket File Symlink; 1.0.5; OSVDB ID: 4894 MIT Kerberos 5 KRB_CONF Elevated Privilege; 1.0.x; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; 1.1.x; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; 1.2.7; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; 1.3-alpha1; OSVDB ID: 4901 MIT Kerberos 5 KDC Array Overrun DoS; <1.2.7; 1.3.3; OSVDB ID: 6846 MIT Kerberos 5 krb5_aname_to_localname() Buffer Overflow; 1.3.4; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS; OSVDB ID: 9407 MIT Kerberos 5 Double-free Error Condition Code Execution; OSVDB ID: 11117 MIT Kerberos 5 send-pr.sh Symlink Arbitrary File Manipulation; 1.2.x; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS; 1.3.0; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS; 1.3.1; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS; 1.3.2; OSVDB ID: 9406 MIT Kerberos 5 ASN.1 Decoder DoS; 1.4.3; OSVDB ID: 27869 MIT Kerberos 5 krshd setuid() Local Privilege Escalation; OSVDB ID: 27870 MIT Kerberos 5 v4rcp setuid() Local Privilege Escalation; OSVDB ID: 27871 MIT Kerberos 5 ftpd seteuid() Local Privilege Escalation; OSVDB ID: 27872 MIT Kerberos 5 ksu seteuid() Local Privilege Escalation; 1.4.4; OSVDB ID: 27869 MIT Kerberos 5 krshd setuid() Local Privilege Escalation; OSVDB ID: 27870 MIT Kerberos 5 v4rcp setuid() Local Privilege Escalation; OSVDB ID: 27871 MIT Kerberos 5 ftpd seteuid() Local Privilege Escalation; OSVDB ID: 27872 MIT Kerberos 5 ksu seteuid() Local Privilege Escalation; 1.5; OSVDB ID: 27869 MIT Kerberos 5 krshd setuid() Local Privilege Escalation; OSVDB ID: 27870 MIT Kerberos 5 v4rcp setuid() Local Privilege Escalation; OSVDB ID: 27871 MIT Kerberos 5 ftpd seteuid() Local Privilege Escalation; OSVDB ID: 27872 MIT Kerberos 5 ksu seteuid() Local Privilege Escalation; 1.5.1; OSVDB ID: 27869 MIT Kerberos 5 krshd setuid() Local Privilege Escalation; OSVDB ID: 27870 MIT Kerberos 5 v4rcp setuid() Local Privilege Escalation; OSVDB ID: 27871 MIT Kerberos 5 ftpd seteuid() Local Privilege Escalation; OSVDB ID: 27872 MIT Kerberos 5 ksu seteuid() Local Privilege Escalation; &lt;1.2.7; OSVDB ID: 4902 MIT Kerberos 5 Key Distribution Center Heap Corruption DoS; 1.7; OSVDB ID: 69607 MIT Kerberos 5 (krb5) KDC TGS Request TGT Credentials Inner Request KrbFastReq Forgery Issue; OSVDB ID: 71183 Kerberos KDC src/kdc/do_as_req.c prepare_error_as() Function AS-REQ Request Double-free Arbitrary Code Execution; OSVDB ID: 70907 Kerberos kpropd do_standalone() Function Unspecified DoS; 1.8; OSVDB ID: 69608 MIT Kerberos 5 (krb5) RC4 Key-derivation Checksums One-byte Stream-cipher Operation Signature Forgery Issue; OSVDB ID: 68525 MIT Kerberos 5 (krb5) Key Distribution Center kdc_authdata.c merge_authdata Function TGS Request Remote DoS; OSVDB ID: 71183 Kerberos KDC src/kdc/do_as_req.c prepare_error_as() Function AS-REQ Request Double-free Arbitrary Code Execution; 1.8.1; OSVDB ID: 69608 MIT Kerberos 5 (krb5) RC4 Key-derivation Checksums One-byte Stream-cipher Operation Signature Forgery Issue; OSVDB ID: 68525 MIT Kerberos 5 (krb5) Key Distribution Center kdc_authdata.c merge_authdata Function TGS Request Remote DoS; OSVDB ID: 69609 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness RC4 Key GSS Token Forgery Issue; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.8.2; OSVDB ID: 69608 MIT Kerberos 5 (krb5) RC4 Key-derivation Checksums One-byte Stream-cipher Operation Signature Forgery Issue; OSVDB ID: 68525 MIT Kerberos 5 (krb5) Key Distribution Center kdc_authdata.c merge_authdata Function TGS Request Remote DoS; OSVDB ID: 69609 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness RC4 Key GSS Token Forgery Issue; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.8.3; OSVDB ID: 69608 MIT Kerberos 5 (krb5) RC4 Key-derivation Checksums One-byte Stream-cipher Operation Signature Forgery Issue; OSVDB ID: 68525 MIT Kerberos 5 (krb5) Key Distribution Center kdc_authdata.c merge_authdata Function TGS Request Remote DoS; OSVDB ID: 69609 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness RC4 Key GSS Token Forgery Issue; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.7.x; OSVDB ID: 69609 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness RC4 Key GSS Token Forgery Issue; 1.8.0; OSVDB ID: 69609 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness RC4 Key GSS Token Forgery Issue; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.3.x; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.4.x; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.5.x; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.6.x; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; 1.7.x; OSVDB ID: 69610 MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message Forgery Issue; OSVDB ID: 70909 Kerberos KDC LDAP Backend Principal Name Handling DoS; OSVDB ID: 70908 Kerberos KDC LDAP Backend Unparse Implementation DoS; 1.8; OSVDB ID: 70907 Kerberos kpropd do_standalone() Function Unspecified DoS; 1.9; OSVDB ID: 71183 Kerberos KDC src/kdc/do_as_req.c prepare_error_as() Function AS-REQ Request Double-free Arbitrary Code Execution; OSVDB ID: 70907 Kerberos kpropd do_standalone() Function Unspecified DoS; 1.6.x; OSVDB ID: 70909 Kerberos KDC LDAP Backend Principal Name Handling DoS; OSVDB ID: 70908 Kerberos KDC LDAP Backend Unparse Implementation DoS; 1.8.x; OSVDB ID: 70909 Kerberos KDC LDAP Backend Principal Name Handling DoS; OSVDB ID: 70908 Kerberos KDC LDAP Backend Unparse Implementation DoS; 1.9; OSVDB ID: 70909 Kerberos KDC LDAP Backend Principal Name Handling DoS; OSVDB ID: 70908 Kerberos KDC LDAP Backend Unparse Implementation DoS; 1.9; OSVDB ID: 70910 Kerberos KDC Unspecified DoS

cgiemail: 1.6; OSVDB ID: 650 cgiemail cgicso Arbitrary Command Execution; OSVDB ID: 3955 cgiemail Open E-Mail Relay; OSVDB ID: 11631 CGIEmail cgisco.c query Parameter Remote Overflow; OSVDB ID: 651 CGIEmail cgisco query Parameter XSS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.