Off-by-one error in the der_get_oid function in mod_auth_kerb 5.0 allows remote attackers to cause a denial of service (crash) via a crafted Kerberos message that triggers a heap-based buffer overflow in the component array.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2006-11-20T21:00:00
Updated: 2024-08-07T20:12:31.200Z
Reserved: 2006-11-20T00:00:00
Link: CVE-2006-5989
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-11-20T21:07:00.000
Modified: 2017-10-11T01:31:23.610
Link: CVE-2006-5989
Redhat