MIT.Kerberos.5.KDC.Null.Pointer.DoS
Description
This indicates an attack attempt against a Denial-of-Service vulnerability in MIT Kerberos.
The vulnerability is caused by a NULL pointer dereference in function validate_as_request(). A remote attacker may be able to exploit this to cause a denial of service condition on the affected system.
Affected Products
MIT Kerberos 5 Prior to 1.14.3
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
http://web.mit.edu/kerberos/krb5-1.14/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-11-22 | 15.729 | Name:MIT. Kerberos5. KDC. Null. Pointer. DoS:MIT. Kerberos. 5. KDC. Null. Pointer. DoS |
2019-10-25 | 14.711 | Default_action:pass:drop |
2019-06-21 | 14.637 |