Multiple integer underflows in the (1) AES and (2) RC4 decryption functionality in the crypto library in MIT Kerberos 5 (aka krb5) 1.3 through 1.6.3, and 1.7 before 1.7.1, allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code by providing ciphertext with a length that is too short to be valid.
2010-01-13T19:30:00.607
2025-04-09T00:30:58.490
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mit | kerberos | 5-1.6.3 | Yes |
| Application | mit | kerberos_5 | 1.3 | Yes |
| Application | mit | kerberos_5 | 1.3.1 | Yes |
| Application | mit | kerberos_5 | 1.3.2 | Yes |
| Application | mit | kerberos_5 | 1.3.3 | Yes |
| Application | mit | kerberos_5 | 1.3.4 | Yes |
| Application | mit | kerberos_5 | 1.3.5 | Yes |
| Application | mit | kerberos_5 | 1.3.6 | Yes |
| Application | mit | kerberos_5 | 1.4 | Yes |
| Application | mit | kerberos_5 | 1.4.1 | Yes |
| Application | mit | kerberos_5 | 1.4.2 | Yes |
| Application | mit | kerberos_5 | 1.4.3 | Yes |
| Application | mit | kerberos_5 | 1.4.4 | Yes |
| Application | mit | kerberos_5 | 1.5 | Yes |
| Application | mit | kerberos_5 | 1.5.1 | Yes |
| Application | mit | kerberos_5 | 1.5.2 | Yes |
| Application | mit | kerberos_5 | 1.5.3 | Yes |
| Application | mit | kerberos_5 | 1.6 | Yes |
| Application | mit | kerberos_5 | 1.6.1 | Yes |
| Application | mit | kerberos_5 | 1.6.2 | Yes |
| Application | mit | kerberos_5 | 1.7 | Yes |