CVE-2006-6143

HIGH

Description

The RPC library in Kerberos 5 1.4 through 1.4.4, and 1.5 through 1.5.1, as used in Kerberos administration daemon (kadmind) and other products that use this library, calls an uninitialized function pointer in freed memory, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

References

http://docs.info.apple.com/article.html?artnum=305391

http://fedoranews.org/cms/node/2375

http://fedoranews.org/cms/node/2376

http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html

http://lists.suse.com/archive/suse-security-announce/2007-Jan/0004.html

http://osvdb.org/31281

http://secunia.com/advisories/23667

http://secunia.com/advisories/23696

http://secunia.com/advisories/23701

http://secunia.com/advisories/23706

http://secunia.com/advisories/23707

http://secunia.com/advisories/23772

http://secunia.com/advisories/23903

http://secunia.com/advisories/24966

http://security.gentoo.org/glsa/glsa-200701-21.xml

http://securitytracker.com/id?1017493

http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2006-002-rpc.txt

http://www.kb.cert.org/vuls/id/481564

http://www.mandriva.com/security/advisories?name=MDKSA-2007:008

http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.006.html

http://www.securityfocus.com/archive/1/456406/100/0/threaded

http://www.securityfocus.com/bid/21970

http://www.ubuntu.com/usn/usn-408-1

http://www.us-cert.gov/cas/techalerts/TA07-009B.html

http://www.us-cert.gov/cas/techalerts/TA07-109A.html

http://www.vupen.com/english/advisories/2007/0111

http://www.vupen.com/english/advisories/2007/1470

https://exchange.xforce.ibmcloud.com/vulnerabilities/31422

https://issues.rpath.com/browse/RPL-925

Details

Source: MITRE

Published: 2006-12-31

Updated: 2020-01-21

Risk Information

CVSS v2.0

Base Score: 9.3

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8.6

Severity: HIGH