CVE-2007-5894 (Kerberos 5) |
|
| BugsAlert Home > CVE-2007-5894 (Kerberos 5) | |
|
The reply function in ftpd.c in the gssftp ftpd in MIT Kerberos 5 (krb5) does not initialize the length variable when auth_type has a certain value, which has unknown impact and remote authenticated attack vectors. NOTE: the original disclosure misidentifies the conditions under which the uninitialized variable is used. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-5894 Learn more about CVE-2007-5894 (Kerberos 5) |
|
| Tags: cve-2007-5894 kerberos | |
Related Items |
|
|
FrSIRT - Fedora Security Update Fixes CUPS Code Execution Vulnerabilities
|
|
|
Microsoft Windows DNS Server Spoofing Attack Vulnerability (MS07-062)
|
|
|
CVE-2008-0620 (SAPLPD, SAPgui, SAPSPRINT)
|
|
|
Vuln: yaSSL Multiple Remote Buffer Overflow Vulnerabilities
|
|
|
WORM_AUTORUN.NK
|
|
|
CVE-2008-1364 (VMWare Workstation, VMware Server, Player, ACE)
|
|
|
CVE-2008-1963 (grape_web_statistics)
|
|
