Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kerberos 缓冲区错误漏洞
Vulnerability Description
MIT Kerberos是美国麻省理工(MIT)的一个用于在网络集群中进行身份验证的软件。Kerberos 同时作为一种网络认证协议,其设计目标是通过密钥系统为客户机 / 服务器应用程序提供强大的认证服务。 Kerberos 存在安全漏洞,该漏洞源于k5admind代码中验证kerberos 4网络通信包存在一个输入验证错误,远程攻击者可以利用这个漏洞对守护程序进行基于堆的溢出,可能以进程权限在系统上执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A