String Handling Vulnerability in MIT Kerberos 5 by MIT
CVE-2014-5355

Currently unrated

Key Information:

Vendor

Mit

Status
Kerberos 5
Vendor
CVE Published:
20 February 2015

What is CVE-2014-5355?

MIT Kerberos 5 versions before 1.13.1 contain a vulnerability where the krb5_read_message function expects a data field represented as a string terminated by a '\0' character. This flaw can allow attackers to trigger a denial of service via two methods: supplying a zero-byte version string or omitting the necessary '\0' character, leading to NULL pointer dereference and out-of-bounds read conditions. This vulnerability highlights critical flaws in the handling of string data, which can be exploited in various server and user contexts within the affected Kerberos libraries.

References

http://rhn.redhat.com/errata/RHSA-2015-0794.html
vendor-advisoryx_refsource_REDHAT
https://lists.debian.org/debian-lts-announce/2018/01/msg0...
mailing-listx_refsource_MLIST
http://lists.opensuse.org/opensuse-updates/2015-03/msg000...
vendor-advisoryx_refsource_SUSE

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.