Skip to content

CVE-2014-4342

MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session.

Ver en NVD

Severidad

N/A

EPSS

Probabilidad de explotación (próx. 30 días): 0.0814 (8.1%)
Percentil: 92.2%
EPSS: 2026-05-06

Afecta

debian:debian_linuxmit:kerberosmit:kerberos_5redhat:enterprise_linux_desktopredhat:enterprise_linux_hpc_noderedhat:enterprise_linux_serverredhat:enterprise_linux_workstation

Descripción técnica

MIT Kerberos 5 (aka krb5) 1.7.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read or NULL pointer dereference, and application crash) by injecting invalid tokens into a GSSAPI application session.

Publicada: 20/7/2014, 11:12:50
Última modificación: 6/5/2026, 22:30:45

Referencias

InicioEventosBlogRecursosEquipo