NVD

Id
57996  
Name
CVE-2007-5972  
Description
Double free vulnerability in the krb5_def_store_mkey function in lib/kdb/kdb_default.c in MIT Kerberos 5 (krb5) 1.5 has unknown impact and remote authenticated attack vectors. NOTE: the free operations occur in code that stores the krb5kdc master key, and so the attacker must have privileges to store this key.  
Reject
 
CVSS Version
2  
CVSS Score
9  
Severity
High  
CVSS Base Score
9  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-12-05  
Modified Date
2010-05-27  
Seq
2007-5972  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
297121 57996 CVE-2007-5972 http://bugs.gentoo.org/show_bug.cgi?id=199211  View
297122 57996 CVE-2007-5972 20071208 MIT Kerberos 5: Multiple vulnerabilities  View
297123 57996 CVE-2007-5972 20071208 Venustech reports of MIT krb5 vulns [CVE-2007-5894 CVE-2007-5901 CVE-2007-5902 CVE-2007-5971 CVE-2007-5972]  View
297124 57996 CVE-2007-5972 USN-924-1  View
297125 57996 CVE-2007-5972 SUSE-SR:2008:002  View
297126 57996 CVE-2007-5972 26750  View
297127 57996 CVE-2007-5972 USN-940-1  View
297128 57996 CVE-2007-5972 ADV-2010-1192  View
297129 57996 CVE-2007-5972 https://issues.rpath.com/browse/RPL-2012  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
55941 JVNDB-2007-004633 krb5 の lib/kdb/kdb_default.c におけるメモリ二重解放の脆弱性 MIT Kerberos 5 (krb5) の lib/kdb/kdb_default.c の krb5_def_store_mkey 関数は、メモリを二重に解放する不備があるため、不特定の影響を受ける脆弱性が存在します。 CVE-2007-5972 29327 CVE-2007-5972 57996 9 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-004633.html 2007-12-05 2012-09-25 View