CVE-2004-0523

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000860
http://lwn.net/Articles/88206/
http://marc.info/?l=bugtraq&m=108612325909496&w=2
http://marc.info/?l=bugtraq&m=108619161815320&w=2
http://marc.info/?l=bugtraq&m=108619250923790&w=2
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101512-1
http://www.debian.org/security/2004/dsa-520	Patch Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200406-21.xml
http://www.kb.cert.org/vuls/id/686862	Third Party Advisory US Government Resource
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:056
http://www.redhat.com/support/errata/RHSA-2004-236.html
http://www.securityfocus.com/bid/10448
https://exchange.xforce.ibmcloud.com/vulnerabilities/16268
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10295
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2002
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A724
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A991
ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc
ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000860
http://lwn.net/Articles/88206/
http://marc.info/?l=bugtraq&m=108612325909496&w=2
http://marc.info/?l=bugtraq&m=108619161815320&w=2
http://marc.info/?l=bugtraq&m=108619250923790&w=2
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101512-1
http://www.debian.org/security/2004/dsa-520	Patch Vendor Advisory
http://www.gentoo.org/security/en/glsa/glsa-200406-21.xml
http://www.kb.cert.org/vuls/id/686862	Third Party Advisory US Government Resource
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:056
http://www.redhat.com/support/errata/RHSA-2004-236.html
http://www.securityfocus.com/bid/10448
https://exchange.xforce.ibmcloud.com/vulnerabilities/16268
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10295
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2002
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A724
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A991

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mit:kerberos:1.0:::::::*
	cpe:2.3:a:mit:kerberos:1.0.8:::::::*
	cpe:2.3:a:mit:kerberos:1.2.2.beta1:::::::*
	cpe:2.3:a:mit:kerberos_5:1.0:::::::*
	cpe:2.3:a:mit:kerberos_5:1.0.6:::::::*
	cpe:2.3:a:mit:kerberos_5:1.1:::::::*
	cpe:2.3:a:mit:kerberos_5:1.1.1:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2:beta1::::::
	cpe:2.3:a:mit:kerberos_5:1.2:beta2::::::
	cpe:2.3:a:mit:kerberos_5:1.2.1:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.2:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.3:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.4:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.5:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.6:::::::*
	cpe:2.3:a:mit:kerberos_5:1.2.7:::::::*
	cpe:2.3:a:mit:kerberos_5:1.3:::::::*
	cpe:2.3:a:mit:kerberos_5:1.3:alpha1::::::
	cpe:2.3:a:mit:kerberos_5:1.3.3:::::::*
	cpe:2.3:a:sgi:propack:2.4:::::::*
	cpe:2.3:a:sgi:propack:3.0:::::::*
	cpe:2.3:a:sun:seam:1.0:::::::*
	cpe:2.3:a:sun:seam:1.0.1:::::::*
	cpe:2.3:a:sun:seam:1.0.2:::::::*
	cpe:2.3:a:tinysofa:tinysofa_enterprise_server:1.0:::::::*
	cpe:2.3:a:tinysofa:tinysofa_enterprise_server:1.0_u1:::::::*

Configuration 2 (hide)

OR	cpe:2.3:o:sun:solaris:8.0::x86:::::
	cpe:2.3:o:sun:solaris:9.0::sparc:::::
	cpe:2.3:o:sun:solaris:9.0::x86:::::
	cpe:2.3:o:sun:sunos:5.8:::::::*

History

20 Nov 2024, 23:48

Information

Published : 2004-08-18 04:00

Updated : 2025-04-03 01:03

NVD link : CVE-2004-0523

Mitre link : CVE-2004-0523

CVE.ORG link : CVE-2004-0523

JSON object : View

Products Affected

sun

seam
solaris
sunos

mit

kerberos_5
kerberos

tinysofa

tinysofa_enterprise_server

sgi

propack

CWE

NVD-CWE-Other

{"id": "CVE-2004-0523", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2004-08-18T04:00:00.000", "references": [{"url": "ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc", "source": "cve@mitre.org"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc", "source": "cve@mitre.org"}, {"url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000860", "source": "cve@mitre.org"}, {"url": "http://lwn.net/Articles/88206/", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=108612325909496&w=2", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=108619161815320&w=2", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=108619250923790&w=2", "source": "cve@mitre.org"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101512-1", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2004/dsa-520", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200406-21.xml", "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/686862", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:056", "source": "cve@mitre.org"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-236.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/10448", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16268", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10295", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2002", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A724", "source": "cve@mitre.org"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A991", "source": "cve@mitre.org"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20040604-01-U.asc", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20040605-01-U.asc", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000860", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lwn.net/Articles/88206/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=108612325909496&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=108619161815320&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://marc.info/?l=bugtraq&m=108619250923790&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-101512-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2004/dsa-520", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200406-21.xml", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/686862", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:056", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-236.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/10448", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16268", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10295", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2002", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A724", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A991", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer en krb5_aname_to_localname en MIT Kerberos 5 (krb5) 1.3.3 y anteriores permite a atacantes remtos ejecutar c\u00f3digo de su elecci\u00f3n como root"}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mit:kerberos:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ACC18A69-28AC-4DED-AA9D-B050709A9D43"}, {"criteria": "cpe:2.3:a:mit:kerberos:1.0.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "85336612-6B0A-46B0-B2E2-FF60A4D4DD01"}, {"criteria": "cpe:2.3:a:mit:kerberos:1.2.2.beta1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D65D5B46-F8BD-41C4-86F2-D495F1EB4F47"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08FA60A9-10E1-4ACD-819C-17801FAD7671"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8973E93-0BBE-4BD3-9983-F6480FFEA228"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A37987D-22F9-47AC-A07A-380F7E509BFE"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E47F0770-67D7-42EE-A1AD-9D5B5E83BF2B"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BE8C0C82-749E-4837-88F8-FB56A753B094"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2:beta1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EA5E4B3-AD02-4E87-822B-8A6C91DA65FA"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2:beta2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A0B70C1-476D-4FAF-BA96-CB3EB32B7BC5"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8AD672FA-918D-48CB-BC03-4E412AF0DCCC"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0B363A4-BB7A-48A2-AE6B-BD2DDD46E7CB"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "74EF42A5-EC47-4475-81D6-FD1E9C2B8A3C"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30F2CBEF-6FA1-4E07-8163-6AFEDC93FCE5"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D133CB0D-8A54-4DAA-9FE8-0B367544DE65"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B2C23BD-1995-4F09-B444-87DDDE21817E"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEF118BE-6351-4768-A3F0-DFE0065273D9"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F01A83F-3BD1-4DED-979A-B4B6B23039FD"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.3:alpha1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B1422F8-CC87-46EA-8649-A12D6E47335D"}, {"criteria": "cpe:2.3:a:mit:kerberos_5:1.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F953CEBA-BAC0-48DF-A3D0-1FABCC9963E2"}, {"criteria": "cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0702A32E-E577-403C-B4D9-15037D7100A5"}, {"criteria": "cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29DC217F-C257-4A3C-9CBD-08010C30BEC3"}, {"criteria": "cpe:2.3:a:sun:seam:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "401CA0B3-2C25-4E6A-B0A0-C5AC4E69F14A"}, {"criteria": "cpe:2.3:a:sun:seam:1.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "111DAAB7-2309-4951-85F1-866D2D532528"}, {"criteria": "cpe:2.3:a:sun:seam:1.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD6C1EDF-259A-4DE1-9E43-35671FBA9662"}, {"criteria": "cpe:2.3:a:tinysofa:tinysofa_enterprise_server:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A407E66E-FC1D-45E8-81C7-126472F5E7B3"}, {"criteria": "cpe:2.3:a:tinysofa:tinysofa_enterprise_server:1.0_u1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83A54042-FC1E-4DE9-BA3A-8839131E32BC"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sun:solaris:8.0:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1894C542-AA81-40A9-BF47-AE24C93C1ACB"}, {"criteria": "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A711CDC2-412C-499D-9FA6-7F25B06267C6"}, {"criteria": "cpe:2.3:o:sun:solaris:9.0:*:x86:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B837BB7-5F62-4CD5-9C64-8553C28EA8A7"}, {"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

10.0 /10