header-logo
Suggest Exploit
vendor:
Kerberos
by:
Unknown
9
CVSS
CRITICAL
Remote Code Execution
119
CWE
Product Name: Kerberos
Affected Version From: MIT Kerberos 5 1.7
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2011-0284
CPE: cpe:2.3:a:mit:kerberos:5-1.7:*:*:*:*:*:*:*
Metasploit: https://www.rapid7.com/db/vulnerabilities/suse-cve-2011-0284/https://www.rapid7.com/db/vulnerabilities/freebsd-vid-7edac52a-66cd-11e0-9398-5d45f3aa24f0/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2011-0356/https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2011-0284/https://www.rapid7.com/db/vulnerabilities/oracle-solaris-cve-2011-0284/
Other Scripts:
Platforms Tested:
Unknown

MIT Kerberos kadmind Remote Code Execution Vulnerability

The MIT Kerberos kadmind service is prone to a remote code-execution vulnerability. An attacker can exploit this vulnerability to execute arbitrary code with superuser privileges. Failed attempts will cause the affected application to crash, denying service to legitimate users. A successful exploit will completely compromise affected computers.

Mitigation:

It is recommended to update to a fixed version of MIT Kerberos.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/47310/info

MIT Kerberos is prone to a remote code-execution vulnerability in 'kadmind'.

An attacker may exploit this issue to execute arbitrary code with superuser privileges. Failed attempts will cause the affected application to crash, denying service to legitimate users. A successful exploit will completely compromise affected computers.

MIT Kerberos 5 1.7 and later are vulnerable.

NOTE (April 13, 2011): This BID was originally titled 'MIT Kerberos kadmind Version String Processing Remote Denial Of Service Vulnerability', but has been renamed to better reflect the nature of the issue. 

# nmap -n -sV krb01

Navigation

Suggest Exploit

Services By CQR