Summary
| Detail | |||
|---|---|---|---|
| Vendor | Mit | First view | 1997-04-29 |
| Product | Kerberos 5 | Last view | 2019-09-26 |
| Version | 1.5.2 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:mit:kerberos_5 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2019-09-26 | CVE-2019-14844 | A flaw was found in, Fedora versions of krb5 from 1.16.1 to, including 1.17.x, in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 "enctypes". A remote unauthenticated user could use this flaw to crash the KDC. |
| 6.5 | 2018-07-26 | CVE-2017-7562 | An authentication bypass flaw was found in the way krb5's certauth interface before 1.16.1 handled the validation of client certificates. A remote attacker able to communicate with the KDC could potentially use this flaw to impersonate arbitrary principals under rare and erroneous circumstances. |
| 6.5 | 2018-01-16 | CVE-2018-5710 | An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The pre-defined function "strlen" is getting a "NULL" string as a parameter value in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the Key Distribution Center (KDC), which allows remote authenticated users to cause a denial of service (NULL pointer dereference) via a modified kadmin client. |
| 7.5 | 2018-01-16 | CVE-2018-5709 | An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. There is a variable "dbentry->n_key_data" in kadmin/dbutil/dump.c that can store 16-bit data but unknowingly the developer has assigned a "u4" variable to it, which is for 32-bit data. An attacker can use this vulnerability to affect other artifacts of the database as we know that a Kerberos database dump file contains trusted data. |
| 5.3 | 2016-03-25 | CVE-2016-3119 | The process_db_args function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the LDAP KDB module in kadmind in MIT Kerberos 5 (aka krb5) through 1.13.4 and 1.14.x through 1.14.1 mishandles the DB argument, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request to modify a principal. |
| 6.5 | 2016-02-12 | CVE-2015-8631 | Multiple memory leaks in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 allow remote authenticated users to cause a denial of service (memory consumption) via a request specifying a NULL principal name. |
| 3.1 | 2016-02-12 | CVE-2015-8629 | The xdr_nullstring function in lib/kadm5/kadm_rpc_xdr.c in kadmind in MIT Kerberos 5 (aka krb5) before 1.13.4 and 1.14.x before 1.14.1 does not verify whether '\0' characters exist as expected, which allows remote authenticated users to obtain sensitive information or cause a denial of service (out-of-bounds read) via a crafted string. |
| 6.8 | 2015-11-08 | CVE-2015-2697 | The build_principal_va function in lib/krb5/krb/bld_princ.c in MIT Kerberos 5 (aka krb5) before 1.14 allows remote authenticated users to cause a denial of service (out-of-bounds read and KDC crash) via an initial '\0' character in a long realm field within a TGS request. |
| 7.1 | 2015-11-08 | CVE-2015-2696 | lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted IAKERB packet that is mishandled during a gss_inquire_context call. |
| 7.1 | 2015-11-08 | CVE-2015-2695 | lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) before 1.14 relies on an inappropriate context handle, which allows remote attackers to cause a denial of service (incorrect pointer read and process crash) via a crafted SPNEGO packet that is mishandled during a gss_inquire_context call. |
| 5 | 2015-02-20 | CVE-2014-5355 | MIT Kerberos 5 (aka krb5) through 1.13.1 incorrectly expects that a krb5_read_message data field is represented as a string ending with a '\0' character, which allows remote attackers to (1) cause a denial of service (NULL pointer dereference) via a zero-byte version string or (2) cause a denial of service (out-of-bounds read) by omitting the '\0' character, related to appl/user_user/server.c and lib/krb5/krb/recvauth.c. |
| 3.5 | 2014-12-16 | CVE-2014-5353 | The krb5_ldap_get_password_policy_from_dn function in plugins/kdb/ldap/libkdb_ldap/ldap_pwd_policy.c in MIT Kerberos 5 (aka krb5) before 1.13.1, when the KDC uses LDAP, allows remote authenticated users to cause a denial of service (daemon crash) via a successful LDAP query with no results, as demonstrated by using an incorrect object type for a password policy. |
| 5 | 2014-07-20 | CVE-2014-4341 | MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session. |
| 4.3 | 2013-11-17 | CVE-2013-1418 | The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request. |
| 5 | 2013-05-29 | CVE-2002-2443 | schpw.c in the kpasswd service in kadmind in MIT Kerberos 5 (aka krb5) before 1.11.3 does not properly validate UDP packets before sending responses, which allows remote attackers to cause a denial of service (CPU and bandwidth consumption) via a forged packet that triggers a communication loop, as demonstrated by krb_pingpong.nasl, a related issue to CVE-1999-0103. |
| 4 | 2013-04-19 | CVE-2013-1416 | The prep_reprocess_req function in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.5 does not properly perform service-principal realm referral, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted TGS-REQ request. |
| 7.1 | 2013-03-05 | CVE-2013-1415 | The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1.11.x before 1.11.1 does not properly handle errors during extraction of fields from an X.509 certificate, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed KRB5_PADATA_PK_AS_REQ AS-REQ request. |
| 4.3 | 2013-03-04 | CVE-2012-1016 | The pkinit_server_return_padata function in plugins/preauth/pkinit/pkinit_srv.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 attempts to find an agility KDF identifier in inappropriate circumstances, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted Draft 9 request. |
| 3.7 | 2010-12-02 | CVE-2010-1323 | MIT Kerberos 5 (aka krb5) 1.3.x, 1.4.x, 1.5.x, 1.6.x, 1.7.x, and 1.8.x through 1.8.3 does not properly determine the acceptability of checksums, which might allow remote attackers to modify user-visible prompt text, modify a response to a Key Distribution Center (KDC), or forge a KRB-SAFE message via certain checksums that (1) are unkeyed or (2) use RC4 keys. |
| 6.8 | 2010-05-19 | CVE-2010-1321 | The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5 (aka krb5) through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not properly check for invalid GSS-API tokens, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an AP-REQ message in which the authenticator's checksum field is missing. |
| 4 | 2010-04-07 | CVE-2010-0629 | Use-after-free vulnerability in kadmin/server/server_stubs.c in kadmind in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote authenticated users to cause a denial of service (daemon crash) via a request from a kadmin client that sends an invalid API version number. |
| 10 | 2010-01-13 | CVE-2009-4212 | Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext with a length that is too short to be valid. |
| 10 | 2009-04-08 | CVE-2009-0846 | The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 (aka krb5) before 1.6.4 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via vectors involving an invalid DER encoding that triggers a free of an uninitialized pointer. |
| 5.8 | 2009-04-08 | CVE-2009-0844 | The get_input_token function in the SPNEGO implementation in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3 allows remote attackers to cause a denial of service (daemon crash) and possibly obtain sensitive information via a crafted length value that triggers a buffer over-read. |
| 5 | 2009-03-27 | CVE-2009-0845 | The spnego_gss_accept_sec_context function in lib/gssapi/spnego/spnego_mech.c in MIT Kerberos 5 (aka krb5) 1.5 through 1.6.3, when SPNEGO is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via invalid ContextFlags data in the reqFlags field in a negTokenInit token. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 41% (12) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 13% (4) | CWE-20 | Improper Input Validation |
| 10% (3) | CWE-399 | Resource Management Errors |
| 6% (2) | CWE-189 | Numeric Errors |
| 6% (2) | CWE-18 | Source Code |
| 3% (1) | CWE-476 | NULL Pointer Dereference |
| 3% (1) | CWE-310 | Cryptographic Issues |
| 3% (1) | CWE-287 | Improper Authentication |
| 3% (1) | CWE-264 | Permissions, Privileges, and Access Controls |
| 3% (1) | CWE-200 | Information Exposure |
| 3% (1) | CWE-190 | Integer Overflow or Wraparound |
CAPEC : Common Attack Pattern Enumeration & Classification
| id | Name |
|---|---|
| CAPEC-3 | Using Leading 'Ghost' Character Sequences to Bypass Input Filters |
| CAPEC-7 | Blind SQL Injection |
| CAPEC-8 | Buffer Overflow in an API Call |
| CAPEC-9 | Buffer Overflow in Local Command-Line Utilities |
| CAPEC-10 | Buffer Overflow via Environment Variables |
| CAPEC-13 | Subverting Environment Variable Values |
| CAPEC-14 | Client-side Injection-induced Buffer Overflow |
| CAPEC-18 | Embedding Scripts in Nonscript Elements |
| CAPEC-22 | Exploiting Trust in Client (aka Make the Client Invisible) |
| CAPEC-24 | Filter Failure through Buffer Overflow |
| CAPEC-26 | Leveraging Race Conditions |
| CAPEC-28 | Fuzzing |
| CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions |
| CAPEC-31 | Accessing/Intercepting/Modifying HTTP Cookies |
| CAPEC-32 | Embedding Scripts in HTTP Query Strings |
| CAPEC-42 | MIME Conversion |
| CAPEC-43 | Exploiting Multiple Input Interpretation Layers |
| CAPEC-45 | Buffer Overflow via Symbolic Links |
| CAPEC-46 | Overflow Variables and Tags |
| CAPEC-47 | Buffer Overflow via Parameter Expansion |
| CAPEC-52 | Embedding NULL Bytes |
| CAPEC-53 | Postfix, Null Terminate, and Backslash |
| CAPEC-63 | Simple Script Injection |
| CAPEC-64 | Using Slashes and URL Encoding Combined to Bypass Validation Logic |
| CAPEC-66 | SQL Injection |
SAINT Exploits
| Description | Link |
|---|---|
| MIT Kerberos 5 RPC library RPCSEC_GSS buffer overflow | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 71972 | Oracle Solaris Kerberos Checksum Acceptability Weakness KDC / KRB-SAFE Messag... |
| 70083 | Oracle Database MIT Kerberos 5 kg_accept_krb5 Remote Denial of Service |
| 69610 | MIT Kerberos 5 (krb5) Checksum Acceptability Weakness KDC / KRB-SAFE Message ... |
| 64744 | Kerberos GSS-API AP-REQ Authenticator NULL Dereference Remote DoS |
| 63569 | Kerberos src/kadmin/server/server_stubs.c init_2_svc() Function API Version N... |
| 61795 | MIT Kerberos 5 (krb5) Crypto Library AES / RC4 Decryption Functionality Malfo... |
| 53384 | MIT Kerberos 5 (krb5) SPNEGO GSS-API Mechanism Network Input Buffer Handling ... |
| 53383 | MIT Kerberos 5 (krb5) ASN.1 Decoder asn1_decode_generaltime() Function Remote... |
| 52963 | MIT Kerberos 5 (krb5) SPNEGO GSS-API Mechanism spnego_gss_accept_sec_context(... |
| 43346 | MIT Kerberos 5 lib/gssapi/mechglue/g_initialize.c gss_indicate_mechs Function... |
| 43345 | MIT Kerberos 5 (krb5) lib/gssapi/krb5/k5sealv3.c gss_krb5int_make_seal_token_... |
| 43343 | MIT Kerberos 5 (krb5) libgssrpc / kadmind RPC Library File Descriptor Handlin... |
| 43342 | MIT Kerberos 5 KDC (krb5kdc) Error Response Information Disclosure |
| 43341 | MIT Kerberos 5 KDC (krb5kdc) Arbitrary Memory Disclosure |
| 37332 | MIT Kerberos 5 RPCSEC_GSS RPC Library svc_auth_gss.c Patch Weakness Overflow |
| 37325 | MIT Kerberos 5 kadmind lib/kadm5/srv/svr_policy.c kadm5_modify_policy_interna... |
| 37324 | MIT Kerberos 5 RPCSEC_GSS RPC Library (librpcsecgss) lib/rpc/svc_auth_gss.c s... |
| 36597 | MIT Kerberos 5 RPC Library gssrpc__svcauth_unix Function Remote Code Execution |
| 36596 | MIT Kerberos 5 RPC Library gssrpc__svcauth_gssapi Function Remote Code Execution |
| 36595 | MIT Kerberos kadmind rename_principal_2_svc Function Remote Overflow |
| 34106 | MIT Kerberos telnet Crafted Username Remote Authentication Bypass |
| 34105 | MIT Kerberos 5 kadmind GSS-API Library Remote Key Database Manipulation |
| 34104 | MIT Kerberos 5 KDC krb5_klog_syslog() Function Remote Overflow |
| 4894 | MIT Kerberos 5 KRB_CONF Elevated Privilege |
| 4890 | KTH Kerberos 4 Ticket File Symlink |
OpenVAS Exploits
| id | Description |
|---|---|
| 2012-04-16 | Name : VMSA-2010-0009: ESXi utilities and ESX Service Console third party updates File : nvt/gb_VMSA-2010-0009.nasl |
| 2012-03-16 | Name : VMSA-2011-0003.2 Third party component updates for VMware vCenter Server, vCe... File : nvt/gb_VMSA-2011-0003.nasl |
| 2012-03-16 | Name : VMSA-2011-0012.3 VMware ESXi and ESX updates to third party libraries and ESX... File : nvt/gb_VMSA-2011-0012.nasl |
| 2012-03-15 | Name : VMSA-2010-0016 VMware ESXi and ESX third party updates for Service Console an... File : nvt/gb_VMSA-2010-0016.nasl |
| 2012-03-15 | Name : VMSA-2011-0007 VMware ESXi and ESX Denial of Service and third party updates ... File : nvt/gb_VMSA-2011-0007.nasl |
| 2012-03-15 | Name : VMSA-2011-0013.2 VMware third party component updates for VMware vCenter Serv... File : nvt/gb_VMSA-2011-0013.nasl |
| 2012-02-12 | Name : Gentoo Security Advisory GLSA 201201-13 (mit-krb5) File : nvt/glsa_201201_13.nasl |
| 2011-11-18 | Name : Fedora Update for krb5 FEDORA-2011-14650 File : nvt/gb_fedora_2011_14650_krb5_fc14.nasl |
| 2011-08-26 | Name : Mac OS X v10.6.6 Multiple Vulnerabilities (2011-001) File : nvt/secpod_macosx_su11-001.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2009:0408 centos5 i386 File : nvt/gb_CESA-2009_0408_krb5-devel_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2009:0409 centos4 i386 File : nvt/gb_CESA-2009_0409_krb5-devel_centos4_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5 CESA-2009:0410-01 centos2 i386 File : nvt/gb_CESA-2009_0410-01_krb5_centos2_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2009:0410 centos3 i386 File : nvt/gb_CESA-2009_0410_krb5-devel_centos3_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2010:0029 centos5 i386 File : nvt/gb_CESA-2010_0029_krb5-devel_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2010:0343 centos5 i386 File : nvt/gb_CESA-2010_0343_krb5-devel_centos5_i386.nasl |
| 2011-08-09 | Name : CentOS Update for krb5-devel CESA-2010:0926 centos5 i386 File : nvt/gb_CESA-2010_0926_krb5-devel_centos5_i386.nasl |
| 2011-05-05 | Name : Fedora Update for krb5 FEDORA-2011-5343 File : nvt/gb_fedora_2011_5343_krb5_fc13.nasl |
| 2011-05-05 | Name : Fedora Update for krb5 FEDORA-2011-5345 File : nvt/gb_fedora_2011_5345_krb5_fc14.nasl |
| 2011-03-25 | Name : Fedora Update for krb5 FEDORA-2011-3462 File : nvt/gb_fedora_2011_3462_krb5_fc14.nasl |
| 2011-03-25 | Name : Fedora Update for krb5 FEDORA-2011-3464 File : nvt/gb_fedora_2011_3464_krb5_fc13.nasl |
| 2011-02-18 | Name : Fedora Update for krb5 FEDORA-2011-1210 File : nvt/gb_fedora_2011_1210_krb5_fc13.nasl |
| 2011-02-18 | Name : Fedora Update for krb5 FEDORA-2011-1225 File : nvt/gb_fedora_2011_1225_krb5_fc14.nasl |
| 2011-01-24 | Name : FreeBSD Ports: krb5 File : nvt/freebsd_krb59.nasl |
| 2011-01-21 | Name : HP-UX Update for Kerberos HPSBUX02623 File : nvt/gb_hp_ux_HPSBUX02623.nasl |
| 2010-12-23 | Name : Fedora Update for krb5 FEDORA-2010-18409 File : nvt/gb_fedora_2010_18409_krb5_fc14.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-B-0069 | Multiple Vulnerabilities in MIT Kerberos 5 Severity: Category I - VMSKEY: V0060811 |
| 2013-B-0130 | MIT Kerberos Denial of Service Vulnerabilities Severity: Category I - VMSKEY: V0042308 |
| 2013-B-0044 | MIT Kerberos Denial of Service Vulnerabilities Severity: Category I - VMSKEY: V0037773 |
| 2011-A-0160 | Multiple Vulnerabilities in VMware vCenter Server 4.0 and vCenter Update Mana... Severity: Category I - VMSKEY: V0030769 |
| 2011-A-0147 | Multiple Vulnerabilities in VMware ESX and ESXi Severity: Category I - VMSKEY: V0030545 |
| 2011-A-0066 | Multiple Vulnerabilities in VMware Products Severity: Category I - VMSKEY: V0027158 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2015-03-27 | MIT Kerberos KDC as-req sname null pointer dereference attempt RuleID : 8888889 - Type : SERVER-OTHER - Revision : 1 |
| 2015-03-27 | MIT Kerberos KDC as-req sname null pointer dereference attempt RuleID : 8888888 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message ksh protocol bad sendauth version length den... RuleID : 52392 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message ksh protocol bad sendauth version length den... RuleID : 52391 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin ksh kprop protocols bad app version s... RuleID : 52390 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin ksh kprop protocols bad app version s... RuleID : 52389 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin ksh kprop protocols bad sendauth vers... RuleID : 52388 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message kprop protocol bad sendauth version length d... RuleID : 52387 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin ksh kprop protocols bad app version l... RuleID : 52386 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin protocol bad sendauth or app version ... RuleID : 52385 - Type : SERVER-OTHER - Revision : 1 |
| 2020-01-07 | MIT Kerberos 5 krb5_read_message klogin ksh kprop protocols bad sendauth vers... RuleID : 52384 - Type : SERVER-OTHER - Revision : 1 |
| 2019-09-24 | MIT Kerberos kpasswd UDP denial of service attempt RuleID : 51212 - Type : SERVER-OTHER - Revision : 1 |
| 2015-06-23 | MIT Kerberos KDC as-req sname null pointer dereference attempt RuleID : 34972 - Type : SERVER-OTHER - Revision : 1 |
| 2015-06-23 | MIT Kerberos KDC as-req sname null pointer dereference attempt RuleID : 34971 - Type : SERVER-OTHER - Revision : 1 |
| 2015-07-08 | MIT Kerberos 5 krb5_read_message denial of service attempt RuleID : 34709 - Type : SERVER-OTHER - Revision : 4 |
| 2014-01-10 | MIT Kerberos KDC prep_reprocess_req null pointer dereference attempt RuleID : 27906 - Type : SERVER-OTHER - Revision : 2 |
| 2014-01-10 | MIT Kerberos ASN.1 asn1_decode_generaltime uninitialized pointer reference at... RuleID : 17741 - Type : SERVER-OTHER - Revision : 5 |
| 2014-01-10 | MIT Kerberos V% KAdminD klog_vsyslog server overflow attempt RuleID : 16207 - Type : SERVER-WEBAPP - Revision : 11 |
| 2014-01-10 | MIT Kerberos kadmind rpc library uninitialized pointer arbitrary code executi... RuleID : 13268 - Type : RPC - Revision : 5 |
| 2014-01-10 | MIT Kerberos kadmind rpc library uninitialized pointer arbitrary code executi... RuleID : 13223 - Type : PROTOCOL-RPC - Revision : 6 |
| 2014-01-10 | MIT Kerberos kadmind auth buffer overflow attempt RuleID : 12708 - Type : PROTOCOL-RPC - Revision : 7 |
| 2014-01-10 | MIT Kerberos kadmind rpc RPCSEC_GSS buffer overflow attempt RuleID : 12424 - Type : PROTOCOL-RPC - Revision : 11 |
| 2014-01-10 | portmap 2112 udp rename_principal attempt RuleID : 12188 - Type : PROTOCOL-RPC - Revision : 8 |
| 2014-01-10 | portmap 2112 tcp rename_principal attempt RuleID : 12187 - Type : PROTOCOL-RPC - Revision : 11 |
| 2014-01-10 | portmap 2112 udp request RuleID : 12186 - Type : PROTOCOL-RPC - Revision : 9 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2018-12-28 | Name: The remote EulerOS Virtualization host is missing multiple security updates. File: EulerOS_SA-2018-1408.nasl - Type: ACT_GATHER_INFO |
| 2018-11-21 | Name: The remote EulerOS Virtualization host is missing a security update. File: EulerOS_SA-2018-1376.nasl - Type: ACT_GATHER_INFO |
| 2018-11-07 | Name: The remote EulerOS host is missing multiple security updates. File: EulerOS_SA-2018-1361.nasl - Type: ACT_GATHER_INFO |
| 2018-11-06 | Name: The remote EulerOS host is missing multiple security updates. File: EulerOS_SA-2018-1354.nasl - Type: ACT_GATHER_INFO |
| 2018-09-07 | Name: The remote Amazon Linux AMI host is missing a security update. File: ala_ALAS-2018-1010.nasl - Type: ACT_GATHER_INFO |
| 2018-08-17 | Name: The remote PhotonOS host is missing multiple security updates. File: PhotonOS_PHSA-2017-0011.nasl - Type: ACT_GATHER_INFO |
| 2018-05-11 | Name: The remote Amazon Linux 2 host is missing a security update. File: al2_ALAS-2018-1010.nasl - Type: ACT_GATHER_INFO |
| 2018-04-27 | Name: The remote CentOS host is missing one or more security updates. File: centos_RHSA-2018-0666.nasl - Type: ACT_GATHER_INFO |
| 2018-02-01 | Name: The remote Debian host is missing a security update. File: debian_DLA-1265.nasl - Type: ACT_GATHER_INFO |
| 2018-01-11 | Name: The remote device is missing a vendor-supplied security patch. File: f5_bigip_SOL15552.nasl - Type: ACT_GATHER_INFO |
| 2017-05-01 | Name: The remote EulerOS host is missing multiple security updates. File: EulerOS_SA-2016-1012.nasl - Type: ACT_GATHER_INFO |
| 2017-05-01 | Name: The remote EulerOS host is missing multiple security updates. File: EulerOS_SA-2016-1076.nasl - Type: ACT_GATHER_INFO |
| 2017-02-07 | Name: The remote Amazon Linux AMI host is missing a security update. File: ala_ALAS-2017-793.nasl - Type: ACT_GATHER_INFO |
| 2016-12-15 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20161103_krb5_on_SL7_x.nasl - Type: ACT_GATHER_INFO |
| 2016-11-28 | Name: The remote CentOS host is missing one or more security updates. File: centos_RHSA-2016-2591.nasl - Type: ACT_GATHER_INFO |
| 2016-11-21 | Name: The remote Gentoo host is missing one or more security-related patches. File: gentoo_GLSA-201611-14.nasl - Type: ACT_GATHER_INFO |
| 2016-11-11 | Name: The remote Oracle Linux host is missing one or more security updates. File: oraclelinux_ELSA-2016-2591.nasl - Type: ACT_GATHER_INFO |
| 2016-11-04 | Name: The remote Red Hat host is missing one or more security updates. File: redhat-RHSA-2016-2591.nasl - Type: ACT_GATHER_INFO |
| 2016-04-22 | Name: The remote Amazon Linux AMI host is missing a security update. File: ala_ALAS-2016-691.nasl - Type: ACT_GATHER_INFO |
| 2016-04-19 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2016-1088-1.nasl - Type: ACT_GATHER_INFO |
| 2016-04-18 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-474.nasl - Type: ACT_GATHER_INFO |
| 2016-04-13 | Name: The remote SUSE host is missing one or more security updates. File: suse_SU-2016-0994-1.nasl - Type: ACT_GATHER_INFO |
| 2016-04-07 | Name: The remote Fedora host is missing a security update. File: fedora_2016-ed99cb602e.nasl - Type: ACT_GATHER_INFO |
| 2016-04-05 | Name: The remote openSUSE host is missing a security update. File: openSUSE-2016-424.nasl - Type: ACT_GATHER_INFO |
| 2016-04-05 | Name: The remote Scientific Linux host is missing one or more security updates. File: sl_20160404_krb5_on_SL7_x.nasl - Type: ACT_GATHER_INFO |
