The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-11-16T02:00:00

Updated: 2024-08-06T15:04:47.885Z

Reserved: 2013-01-24T00:00:00

Link: CVE-2013-1418

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-11-18T03:55:05.397

Modified: 2024-11-21T01:49:32.643

Link: CVE-2013-1418

cve-icon Redhat

Severity : Moderate

Publid Date: 2013-11-04T00:00:00Z

Links: CVE-2013-1418 - Bugzilla