VDB
CVE-2005-1174
CVE-2005-1174
PUBLISHED
CVSS 5 MEDIUM
MIT Kerberos 5 (krb5) 1.3 through 1.4.1 Key Distribution Center (KDC) allows remote attackers to cause a denial of service (application crash) via a certain valid TCP connection that causes a free of unallocated memory.
EPSS 40.92% · 97.5th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
40.92%
97.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mit | kerberos_5 | 1.4.1, 1.3, 1.3.1 |
| n/a | n/a | n/a |
Exploit Intelligence
- 20364 (circl)
- RHSA-2005:567 (circl)
- SUSE-SR:2005:017 (circl)
- kerberos-kdc-krb5-tcp-connection-dos(21327) (circl)
- VU#259798 (circl)
- 20050712 MITKRB5-SA-2005-002: buffer overflow, heap corruption in KDC (circl)
- 1014460 (circl)
- ADV-2006-2074 (circl)
- oval:org.mitre.oval:def:397 (circl)
- 101809 (circl)
…and 14 more exploits
Timeline
- Jul 16, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- http://secunia.com/advisories/20364 technical
- RHSA-2005:567 vendor-advisory
- SUSE-SR:2005:017 vendor-advisory
- kerberos-kdc-krb5-tcp-connection-dos(21327) vdb
- VU#259798 third-party-advisory
- 20050712 MITKRB5-SA-2005-002: buffer overflow, heap corruption in KDC mailing-list
- 1014460 vdb
- ADV-2006-2074 vdb
- oval:org.mitre.oval:def:397 vdb
- 101809 vendor-advisory
- http://web.mit.edu/kerberos/advisories/2005-002-patch_1.4.1.txt url
- TLSA-2005-78 vendor-advisory
- IY85474 vendor-advisory
- 20050703-01-U vendor-advisory
- 14240 vdb
- 16041 third-party-advisory
- USN-224-1 vendor-advisory
- DSA-757 vendor-advisory
- APPLE-SA-2005-08-15 vendor-advisory
- oval:org.mitre.oval:def:10229 vdb
…and 6 more