NVD

Id
54961  
Name
CVE-2007-2798  
Description
Stack-based buffer overflow in the rename_principal_2_svc function in kadmind for MIT Kerberos 1.5.3, 1.6.1, and other versions allows remote authenticated users to execute arbitrary code via a crafted request to rename a principal.  
Reject
 
CVSS Version
2  
CVSS Score
7.4  
Severity
High  
CVSS Base Score
7.4  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
4.4  
CVSS Vector
(AV:A/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-06-26  
Modified Date
2012-10-30  
Seq
2007-2798  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
279017 54961 CVE-2007-2798 20070602-01-P  View
279018 54961 CVE-2007-2798 http://docs.info.apple.com/article.html?artnum=306172  View
279019 54961 CVE-2007-2798 HPSBUX02544  View
279020 54961 CVE-2007-2798 20070626 Multiple Vendor Kerberos kadmind Rename Principal Buffer Overflow Vulnerability  View
279021 54961 CVE-2007-2798 APPLE-SA-2007-07-31  View
279022 54961 CVE-2007-2798 oval:org.mitre.oval:def:1726  View
279023 54961 CVE-2007-2798 oval:org.mitre.oval:def:7550  View
279024 54961 CVE-2007-2798 oval:org.mitre.oval:def:9996  View
279025 54961 CVE-2007-2798 GLSA-200707-11  View
279026 54961 CVE-2007-2798 102985  View
279027 54961 CVE-2007-2798 http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2007-005.txt  View
279028 54961 CVE-2007-2798 DSA-1323  View
279029 54961 CVE-2007-2798 VU#554257  View
279030 54961 CVE-2007-2798 MDKSA-2007:137  View
279031 54961 CVE-2007-2798 SUSE-SA:2007:038  View
279032 54961 CVE-2007-2798 RHSA-2007:0384  View
279033 54961 CVE-2007-2798 RHSA-2007:0562  View
279034 54961 CVE-2007-2798 20070626 MITKRB5-SA-2007-005: kadmind vulnerable to buffer overflow  View
279035 54961 CVE-2007-2798 20070628 FLEA-2007-0029-1: krb5 krb5-workstation  View
279036 54961 CVE-2007-2798 20070629 TSLSA-2007-0021 - kerberos5  View
279037 54961 CVE-2007-2798 24653  View
279038 54961 CVE-2007-2798 25159  View
279039 54961 CVE-2007-2798 1018295  View
279040 54961 CVE-2007-2798 USN-477-1  View
279041 54961 CVE-2007-2798 TA07-177A  View
279042 54961 CVE-2007-2798 ADV-2007-2337  View
279043 54961 CVE-2007-2798 ADV-2007-2370  View
279044 54961 CVE-2007-2798 ADV-2007-2491  View
279045 54961 CVE-2007-2798 ADV-2007-2732  View
279046 54961 CVE-2007-2798 ADV-2007-3229  View
279047 54961 CVE-2007-2798 ADV-2010-1574  View
279048 54961 CVE-2007-2798 kerberos-renameprincipal2svc-bo(35080)  View
279049 54961 CVE-2007-2798 https://issues.rpath.com/browse/RPL-1499  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
51818 JVNDB-2007-000481 MIT Kerberos 5 の rename_principal_2_svc() 関数におけるバッファオーバーフローの脆弱性 MIT Kerberos 5 の kadmind における rename_principal_2_svc() 関数には、プリンシパルをリネームする不正なリクエストを処理した際に、スタックベースのバッファオーバーフローが発生する脆弱性が存在します。 CVE-2007-2798 26153 CVE-2007-2798 54961 7.4 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-000481.html 2007-06-26 2010-07-15 View