VDB

GCVE-110-CERTCC-2004-795632

GCVE-110-CERTCC-2004-795632
Advisory Published
Vulnetix · Advisory published August 31, 2004
The MIT Kerberos 5 library does not securely deallocate heap memory when decoding ASN.1 structures, resulting in double-free vulnerabilities. An unauthenticated, remote attacker could execute arbitrary code on a KDC server, which could compromise an entire Kerberos realm. An attacker may also be able to execute arbitrary code on Kerberos clients, or cause a denial of service on KDCs or clients.

Risk Scores

certcc-cam
certcc-cam
impact20population18exploitation0widely_known15score_current20.55375ease_of_exploitation7

Browse GCVE Records

73,685 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›