Detections
Analytics

Apache mod_auth_kerb <= 5.20 Buffer Overflow

medium Nessus Network Monitor Plugin ID 3816

Synopsis

The remote host is vulnerable to a buffer overflow.

Description

The remote host is running the Apache mod_auth_kerb Kerberos authentication module. This version of mod_auth_kerb is reported to be vulnerable to a remote buffer overflow. The details of the attack are not yet known, however, it is alleged that an attacker would be able to crash the system or execute arbitrary code. In order to exploit this flaw, an attacker would only need to send a malformed Kerberos authentication request.

Solution

Upgrade to a version higher than 5.20.

See Also

http://modauthkerb.sourceforge.net

Plugin Details

Severity: Medium

ID: 3816

Family: Web Servers

Published: 11/22/2006

Updated: 3/6/2019

Nessus ID: 25225, 23788, 23797, 24063

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P

CVSS v3

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:X

Vulnerability Information

CPE: cpe:/a:apache:http_server

Reference Information

CVE: CVE-2006-5989

BID: 21214