Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:
CVE Vulnerabilities
56363
Checklists
222
US-CERT Alerts
246
US-CERT Vuln Notes
2720
OVAL Queries
8140
CPE Names
73033

Last updated: Sat May 18 19:11:55 EDT 2013

CVE Publication rate: 11.57

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index

Vulnerability Workload Index: 6.09

About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Cyber Awareness System

Vulnerability Summary for CVE-2010-1321

Original release date:05/19/2010
Last revised:01/19/2012
Source: US-CERT/NIST

Overview

The kg_accept_krb5 function in krb5/accept_sec_context.c in the GSS-API library in MIT Kerberos 5 (aka krb5) through 1.7.1 and 1.8 before 1.8.2, as used in kadmind and other applications, does not properly check for invalid GSS-API tokens, which allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via an AP-REQ message in which the authenticator's checksum field is missing.

Description

Per: http://cwe.mitre.org/data/definitions/476.html 'CWE-476: NULL Pointer Dereference'

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:6.8 (MEDIUM) (AV:N/AC:L/Au:S/C:N/I:N/A:C) (legend)
Impact Subscore: 6.9
Exploitability Subscore: 8.0
CVSS Version 2 Metrics:
Access Vector: Network exploitable
Access Complexity: Low
Authentication: Required to exploit
Impact Type:Allows disruption of serviceUnknown

Per: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt 'AFFECTED SOFTWARE ================= * kadmind and other GSS-API server applications in all known releases of MIT krb5, up to and including krb5-1.8.1 * third-party GSS-API server applications that link link against the GSS-API library in all known releases of MIT krb5, up to and including krb5-1.8.1 * Independent implementations of the krb5 GSS-API mechanism may be vulnerable, as the underlying bug is based on plausible (but invalid) assumptions about the Kerberos protocol.'

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Technical Alert: TA11-201A
Name: TA11-201A
Hyperlink:http://www.us-cert.gov/cas/techalerts/TA11-201A.html
US-CERT Technical Alert: TA10-287A
Name: TA10-287A
Hyperlink:http://www.us-cert.gov/cas/techalerts/TA10-287A.html
External Source: BUGTRAQ
Name: 20100518 MITKRB5-SA-2010-005 [CVE-2010-1321] GSS-API lib null pointer deref
Type: Patch Information
Hyperlink:http://www.securityfocus.com/archive/1/archive/1/511331/100/0/threaded
External Source: CONFIRM
Name: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt
Type: Advisory; Patch Information
Hyperlink:http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2010-005.txt
External Source: VUPEN
Name: ADV-2011-0134
Hyperlink:http://www.vupen.com/english/advisories/2011/0134
External Source: VUPEN
Name: ADV-2010-3112
Hyperlink:http://www.vupen.com/english/advisories/2010/3112
External Source: VUPEN
Name: ADV-2010-1882
Hyperlink:http://www.vupen.com/english/advisories/2010/1882
External Source: VUPEN
Name: ADV-2010-1574
Hyperlink:http://www.vupen.com/english/advisories/2010/1574
External Source: VUPEN
Name: ADV-2010-1222
Hyperlink:http://www.vupen.com/english/advisories/2010/1222
External Source: VUPEN
Name: ADV-2010-1196
Hyperlink:http://www.vupen.com/english/advisories/2010/1196
External Source: VUPEN
Name: ADV-2010-1193
Hyperlink:http://www.vupen.com/english/advisories/2010/1193
External Source: VUPEN
Name: ADV-2010-1192
Hyperlink:http://www.vupen.com/english/advisories/2010/1192
External Source: VUPEN
Name: ADV-2010-1177
Hyperlink:http://www.vupen.com/english/advisories/2010/1177
External Source: CONFIRM
Name: http://www.vmware.com/security/advisories/VMSA-2011-0003.html
Hyperlink:http://www.vmware.com/security/advisories/VMSA-2011-0003.html
External Source: UBUNTU
Name: USN-940-2
Hyperlink:http://www.ubuntu.com/usn/USN-940-2
External Source: UBUNTU
Name: USN-940-1
Hyperlink:http://www.ubuntu.com/usn/USN-940-1
External Source: BID
Name: 40235
Hyperlink:http://www.securityfocus.com/bid/40235
External Source: BUGTRAQ
Name: 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
Hyperlink:http://www.securityfocus.com/archive/1/archive/1/516397/100/0/threaded
External Source: REDHAT
Name: RHSA-2011:0880
Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-0880.html
External Source: REDHAT
Name: RHSA-2011:0152
Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-0152.html
External Source: REDHAT
Name: RHSA-2010:0987
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0987.html
External Source: REDHAT
Name: RHSA-2010:0935
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0935.html
External Source: REDHAT
Name: RHSA-2010:0873
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0873.html
External Source: REDHAT
Name: RHSA-2010:0807
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0807.html
External Source: REDHAT
Name: RHSA-2010:0770
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0770.html
External Source: REDHAT
Name: RHSA-2010:0423
Hyperlink:http://www.redhat.com/support/errata/RHSA-2010-0423.html
External Source: CONFIRM
Name: http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
Hyperlink:http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
External Source: CONFIRM
Name: http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html
Hyperlink:http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html
External Source: CONFIRM
Name: http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
Hyperlink:http://www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
External Source: MANDRIVA
Name: MDVSA-2010:100
Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2010:100
External Source: DEBIAN
Name: DSA-2052
Hyperlink:http://www.debian.org/security/2010/dsa-2052
External Source: CONFIRM
Name: http://support.avaya.com/css/P8/documents/100114315
Hyperlink:http://support.avaya.com/css/P8/documents/100114315
External Source: SECUNIA
Name: 44954
Hyperlink:http://secunia.com/advisories/44954
External Source: SECUNIA
Name: 43335
Hyperlink:http://secunia.com/advisories/43335
External Source: SECUNIA
Name: 42974
Hyperlink:http://secunia.com/advisories/42974
External Source: SECUNIA
Name: 42432
Hyperlink:http://secunia.com/advisories/42432
External Source: SECUNIA
Name: 41967
Hyperlink:http://secunia.com/advisories/41967
External Source: SECUNIA
Name: 40685
Hyperlink:http://secunia.com/advisories/40685
External Source: SECUNIA
Name: 40346
Hyperlink:http://secunia.com/advisories/40346
External Source: SECUNIA
Name: 39849
Hyperlink:http://secunia.com/advisories/39849
External Source: SECUNIA
Name: 39818
Hyperlink:http://secunia.com/advisories/39818
External Source: SECUNIA
Name: 39799
Hyperlink:http://secunia.com/advisories/39799
External Source: SECUNIA
Name: 39784
Hyperlink:http://secunia.com/advisories/39784
External Source: SECUNIA
Name: 39762
Hyperlink:http://secunia.com/advisories/39762
External Source: OVAL
Name: oval:org.mitre.oval:def:7450
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7450
External Source: OVAL
Name: oval:org.mitre.oval:def:7198
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7198
External Source: OVAL
Name: oval:org.mitre.oval:def:11604
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11604
External Source: OSVDB
Name: 64744
Hyperlink:http://osvdb.org/64744
External Source: SUSE
Name: SUSE-SU-2012:0042
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html
External Source: SUSE
Name: SUSE-SU-2012:0010
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html
External Source: SUSE
Name: SUSE-SR:2010:019
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
External Source: SUSE
Name: SUSE-SR:2010:014
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html
External Source: SUSE
Name: SUSE-SR:2010:013
Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html
External Source: FEDORA
Name: FEDORA-2010-8805
Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041654.html
External Source: FEDORA
Name: FEDORA-2010-8796
Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041645.html
External Source: FEDORA
Name: FEDORA-2010-8749
Hyperlink:http://lists.fedoraproject.org/pipermail/package-announce/2010-May/041615.html
External Source: HP
Name: HPSBUX02544
Hyperlink:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427
External Source: HP
Name: HPSBUX02544
Hyperlink:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427

References to Check Content

Identifier:oval:org.mitre.oval:def:11604
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11604
Identifier:oval:org.mitre.oval:def:7450
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7450
Identifier:oval:org.mitre.oval:def:7198
Check System:http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7198

Vulnerable software and versions

Nav control imageConfiguration 1
line trunkNav control imageOR
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.8
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.7.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.7
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.6.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.6.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.2:beta1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.2:beta2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.3.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.0
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.5
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.4
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.7
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.6
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.5.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.5.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.6
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.6.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.0.6
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5_1.1.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.4
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.6
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.4.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.4.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.4.4
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.8:alpha
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.4.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.5.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.5
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.2.8
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3:alpha1
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.3
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.2
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.5
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.3.4
line trunkspacerNav control image* cpe:/a:mit:kerberos:5-1.8.1 and previous versions
Nav control imageConfiguration 2
spacerNav control imageOR
spacerspacerNav control image* cpe:/a:derrick_brashear:kadmind
* Denotes Vulnerable Software
* Changes related to vulnerability configurations

Technical Details

Vulnerability Type (View All)
CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1321