CVE-2015-8630 in Kerberosالمعلومات

الملخص

بحسب MITRE

The (1) kadm5_create_principal_3 and (2) kadm5_modify_principal functions in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos 5 (aka krb5) 1.12.x and 1.13.x before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) by specifying KADM5_POLICY with a NULL policy name.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!