CVE-2004-0644

Published Sep 28, 2004

Last updated 5 years ago

CVSS info 5.0

Overview

Description: The asn1buf_skiptail function in the ASN.1 decoder library for MIT Kerberos 5 (krb5) 1.2.2 through 1.3.4 allows remote attackers to cause a denial of service (infinite loop) via a certain BER encoding.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D0B363A4-BB7A-48A2-AE6B-BD2DDD46E7CB"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74EF42A5-EC47-4475-81D6-FD1E9C2B8A3C"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30F2CBEF-6FA1-4E07-8163-6AFEDC93FCE5"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D133CB0D-8A54-4DAA-9FE8-0B367544DE65"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B2C23BD-1995-4F09-B444-87DDDE21817E"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEF118BE-6351-4768-A3F0-DFE0065273D9"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.2.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2574FC48-C80A-427A-AD12-42676D125D62"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F01A83F-3BD1-4DED-979A-B4B6B23039FD"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3:alpha1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B1422F8-CC87-46EA-8649-A12D6E47335D"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ACEB5A36-8F72-417A-AC92-149612EC7BCB"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B8704B5-F37B-4C61-A924-3774A29BFEB3"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F953CEBA-BAC0-48DF-A3D0-1FABCC9963E2"
          },
          {
            "criteria": "cpe:2.3:a:mit:kerberos_5:1.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED81A044-8A7B-4EEF-A4B3-EA49D76FAAED"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References