Executive Summary

Informations
Name	CVE-2000-0390	First vendor Publication	2000-05-16
Vendor	Cve	Last vendor Modification	2008-09-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score	10	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Low
Cvss Expoit Score	10	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Security Protection

Impacts

Provides administrator access : Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service.

Detail

Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2000-0390

CPE : Common Platform Enumeration

Type	Description	Count
Application	Cygnus Cygnus Network Security cpe:/a:cygnus:cygnus_network_security:4.0	1
Application	Cygnus Kerbnet cpe:/a:cygnus:kerbnet:5.0	1
Application	Mit Kerberos cpe:/a:mit:kerberos:5_1.1.1 cpe:/a:mit:kerberos:5_1.0 cpe:/a:mit:kerberos:4.0	3
Os	Redhat Linux cpe:/o:redhat:linux:6.2::alpha cpe:/o:redhat:linux:6.2::i386 cpe:/o:redhat:linux:6.2::sparc	3

Open Source Vulnerability Database (OSVDB)

id	Description
4884	MIT Kerberos 5 krb425_conv_principal Function Remote Overflow

Internal Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/1220
BUGTRAQ	http://archives.neohapsis.com/archives/bugtraq/2000-05/0184.html
CERT	http://www.cert.org/advisories/CA-2000-06.html
FREEBSD	http://archives.neohapsis.com/archives/freebsd/2000-05/0295.html
OSVDB	http://www.osvdb.org/4884
REDHAT	http://www.redhat.com/support/errata/RHSA-2000-025.html

Alert History

Date	Informations
2013-05-11 12:00:10	Multiple Updates