National Cyber Awareness System

Vulnerability Summary for CVE-2011-0281

Overview

The unparse implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.6.x through 1.9, when an LDAP backend is used, allows remote attackers to cause a denial of service (file descriptor exhaustion and daemon hang) via a principal name that triggers use of a backslash escape sequence, as demonstrated by a \n sequence.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: XF

Name: kerberos-ldap-descriptor-dos(65324)

Hyperlink:http://xforce.iss.net/xforce/xfdb/65324

External Source: VUPEN

Name: ADV-2011-0464

Hyperlink:http://www.vupen.com/english/advisories/2011/0464

External Source: VUPEN

Name: ADV-2011-0347

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2011/0347

External Source: VUPEN

Name: ADV-2011-0333

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2011/0333

External Source: VUPEN

Name: ADV-2011-0330

Type: Advisory

Hyperlink:http://www.vupen.com/english/advisories/2011/0330

External Source: CONFIRM

Name: http://www.vmware.com/security/advisories/VMSA-2011-0012.html

Hyperlink:http://www.vmware.com/security/advisories/VMSA-2011-0012.html

External Source: SECTRACK

Name: 1025037

Hyperlink:http://www.securitytracker.com/id?1025037

External Source: BID

Name: 46265

Hyperlink:http://www.securityfocus.com/bid/46265

External Source: BUGTRAQ

Name: 20111013 VMSA-2011-0012 VMware ESXi and ESX updates to third party libraries and ESX Service Console

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/520102/100/0/threaded

External Source: BUGTRAQ

Name: 20110208 MITKRB5-SA-2011-002 KDC denial of service attacks [CVE-2011-0281 CVE-2011-0282 CVE-2011-0283]

Hyperlink:http://www.securityfocus.com/archive/1/archive/1/516299/100/0/threaded

External Source: REDHAT

Name: RHSA-2011:0200

Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-0200.html

External Source: REDHAT

Name: RHSA-2011:0199

Hyperlink:http://www.redhat.com/support/errata/RHSA-2011-0199.html

External Source: MANDRIVA

Name: MDVSA-2011:025

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2011:025

External Source: MANDRIVA

Name: MDVSA-2011:024

Hyperlink:http://www.mandriva.com/security/advisories?name=MDVSA-2011:024

External Source: CONFIRM

Name: http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt

Type: Advisory

Hyperlink:http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-002.txt

External Source: SREASON

Name: 8073

Hyperlink:http://securityreason.com/securityalert/8073

External Source: SECUNIA

Name: 46397

Hyperlink:http://secunia.com/advisories/46397

External Source: SECUNIA

Name: 43275

Type: Advisory

Hyperlink:http://secunia.com/advisories/43275

External Source: SECUNIA

Name: 43273

Type: Advisory

Hyperlink:http://secunia.com/advisories/43273

External Source: SECUNIA

Name: 43260

Type: Advisory

Hyperlink:http://secunia.com/advisories/43260

External Source: MLIST

Name: [kerberos] 20101222 LDAP handle unavailable: Can't contact LDAP server

Hyperlink:http://mailman.mit.edu/pipermail/kerberos/2010-December/016800.html

External Source: SUSE

Name: SUSE-SR:2011:004

Hyperlink:http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html