CVE-2008-0062

Priority
Description
KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some
krb4 message types, which allows remote attackers to cause a denial of
service (crash) and possibly execute arbitrary code via crafted messages
that trigger a NULL pointer dereference or double-free.
Assigned-to
kees
Package
Source: krb5 (LP Ubuntu Debian)
Upstream:pending (1.6.4)
More Information

Updated: 2019-03-19 11:44:56 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)