The kadm5_modify_policy_internal function in lib/kadm5/srv/svr_policy.c in the Kerberos administration daemon (kadmind) in MIT Kerberos 5 (krb5) 1.5 through 1.6.2 does not properly check return values when the policy does not exist, which might allow remote authenticated users with the "modify policy" privilege to execute arbitrary code via unspecified vectors that trigger a write to an uninitialized pointer.
References
Configurations
History
09 Feb 2024, 03:24
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:mit:kerberos_5:1.6.2:*:*:*:*:*:*:* cpe:2.3:a:mit:kerberos_5:1.5.2:*:*:*:*:*:*:* cpe:2.3:a:mit:kerberos_5:1.6:*:*:*:*:*:*:* cpe:2.3:a:mit:kerberos_5:1.5:*:*:*:*:*:*:* cpe:2.3:a:mit:kerberos_5:1.6.1:*:*:*:*:*:*:* cpe:2.3:a:mit:kerberos_5:1.5.1:*:*:*:*:*:*:* |
cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:* |
| References | () http://secunia.com/advisories/26676 - Broken Link | |
| References | () http://secunia.com/advisories/26680 - Broken Link | |
| References | () http://secunia.com/advisories/26700 - Broken Link | |
| References | () http://secunia.com/advisories/26728 - Broken Link | |
| References | () http://secunia.com/advisories/26783 - Broken Link | |
| References | () http://secunia.com/advisories/26987 - Broken Link | |
| References | () http://securityreason.com/securityalert/3092 - Broken Link | |
| References | () http://web.mit.edu/Kerberos/advisories/MITKRB5-SA-2007-006.txt - Vendor Advisory | |
| References | () http://www.gentoo.org/security/en/glsa/glsa-200709-01.xml - Third Party Advisory | |
| References | () http://www.kb.cert.org/vuls/id/377544 - Third Party Advisory, US Government Resource | |
| References | () http://www.mandriva.com/security/advisories?name=MDKSA-2007:174 - Broken Link | |
| References | () http://www.novell.com/linux/security/advisories/2007_19_sr.html - Broken Link | |
| References | () http://www.redhat.com/support/errata/RHSA-2007-0858.html - Third Party Advisory | |
| References | () http://www.securityfocus.com/archive/1/478794/100/0/threaded - Third Party Advisory, VDB Entry | |
| References | () http://www.securityfocus.com/bid/25533 - Broken Link, Third Party Advisory, VDB Entry | |
| References | () http://www.securitytracker.com/id?1018647 - Broken Link, Third Party Advisory, VDB Entry | |
| References | () http://www.vupen.com/english/advisories/2007/3051 - Broken Link | |
| References | () https://bugzilla.redhat.com/show_bug.cgi?id=250976 - Issue Tracking | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/36438 - Broken Link, VDB Entry | |
| References | () https://issues.rpath.com/browse/RPL-1696 - Broken Link | |
| References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9278 - Broken Link | |
| References | () https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00087.html - Mailing List | |
| First Time |
Fedoraproject
Fedoraproject fedora |
|
| CWE | CWE-824 |
Information
Published : 2007-09-05 10:17
Updated : 2024-02-09 03:24
NVD link : CVE-2007-4000
Mitre link : CVE-2007-4000
CVE.ORG link : CVE-2007-4000
JSON object : View
Products Affected
fedoraproject
- fedora
mit
- kerberos_5
CWE
CWE-824
Access of Uninitialized Pointer