CVEブラウザに戻る

CVE-2007-3999

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0670%

EPSS Percentile22.51th

Published2007年9月5日

Last Modified2026年4月23日

Vulnerability Description

Stack-based buffer overflow in the svcauth_gss_validate function in lib/rpc/svc_auth_gss.c in the RPCSEC_GSS RPC library (librpcsecgss) in MIT Kerberos 5 (krb5) 1.4 through 1.6.2, as used by the Kerberos administration daemon (kadmind) and some third-party applications that use krb5, allows remote attackers to cause a denial of service (daemon crash) and probably execute arbitrary code via a long string in an RPC message.

Affected Platforms (CPE)

📦

Mit

Kerberos 5

= 1.4

📦

Mit

Kerberos 5

= 1.4.1

📦

Mit

Kerberos 5

= 1.4.2

📦

Mit

Kerberos 5

= 1.4.3

📦

Mit

Kerberos 5

= 1.4.4

📦

Mit

Kerberos 5

= 1.5

📦

Mit

Kerberos 5

= 1.5.1

📦

Mit

Kerberos 5

= 1.5.2

📦

Mit

Kerberos 5

= 1.5.3

📦

Mit

Kerberos 5

= 1.6

📦

Mit

Kerberos 5

= 1.6.1

📦

Mit

Kerberos 5

= 1.6.2

References & Advisories

🔗 http://docs.info.apple.com/article.html?artnum=307041

🔗 http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html

🔗 http://lists.rpath.com/pipermail/security-announce/2007-September/000237.html

🔗 http://secunia.com/advisories/26676

🔗 http://secunia.com/advisories/26680

🔗 http://secunia.com/advisories/26684

🔗 http://secunia.com/advisories/26691

🔗 http://secunia.com/advisories/26697

関連する脆弱性情報

CVE-2000-039110.0

Buffer overflow in krshd in Kerberos 5 allows remote attackers to gain root privileges.

CVE-2000-039010.0

Buffer overflow in krb425_conv_principal function in Kerberos 5 allows remote attackers to gain root privileges.

CVE-2000-038910.0

Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.

CVE-2000-051410.0

GSSFTP FTP daemon in Kerberos 5 1.1.x does not properly restrict access to some FTP commands, which allows remote attackers to cau...