Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2011-1527
Description:The kdb_ldap plugin in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.9 through 1.9.1, when the LDAP back end is used, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a kinit operation with incorrect string case for the realm, related to the is_principal_in_realm, krb5_set_error_message, krb5_ldap_get_principal, and process_as_req functions.
Test IDs: 1.3.6.1.4.1.25623.1.0.70445   1.3.6.1.4.1.25623.1.0.120489   1.3.6.1.4.1.25623.1.0.870702  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-1527
CERT/CC vulnerability note: VU#659251
http://www.kb.cert.org/vuls/id/659251
http://www.mandriva.com/security/advisories?name=MDVSA-2011:159
RedHat Security Advisories: RHSA-2011:1379
http://www.redhat.com/support/errata/RHSA-2011-1379.html




© 1998-2021 E-Soft Inc. All rights reserved.