CyberSec.Space Logo
Back to CVE Browser

CVE-2007-3999

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0670%
EPSS Percentile22.51th
PublishedSep 5, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.

Affected Platforms (CPE)

πŸ“¦
Mit

Kerberos 5

= 1.4
πŸ“¦
Mit

Kerberos 5

= 1.4.1
πŸ“¦
Mit

Kerberos 5

= 1.4.2
πŸ“¦
Mit

Kerberos 5

= 1.4.3
πŸ“¦
Mit

Kerberos 5

= 1.4.4
πŸ“¦
Mit

Kerberos 5

= 1.5
πŸ“¦
Mit

Kerberos 5

= 1.5.1
πŸ“¦
Mit

Kerberos 5

= 1.5.2
πŸ“¦
Mit

Kerberos 5

= 1.5.3
πŸ“¦
Mit

Kerberos 5

= 1.6
πŸ“¦
Mit

Kerberos 5

= 1.6.1
πŸ“¦
Mit

Kerberos 5

= 1.6.2

References & Advisories

πŸ”— http://docs.info.apple.com/article.html?artnum=307041
πŸ”— http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html
πŸ”— http://lists.rpath.com/pipermail/security-announce/2007-September/000237.html
πŸ”— http://secunia.com/advisories/26676
πŸ”— http://secunia.com/advisories/26680
πŸ”— http://secunia.com/advisories/26684
πŸ”— http://secunia.com/advisories/26691
πŸ”— http://secunia.com/advisories/26697

Related Vulnerabilities

CVE-2000-039110.0

Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.

CVE-2000-039010.0

Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.

CVE-2000-038910.0

Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.

CVE-2000-051410.0

GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cau...