Overview
The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An attacker with network access to an application that depends on the vulnerable code path can cause the application to crash.
Description
A flawed logical condition allows a malicious actor to remotely trigger a NULL pointer dereference using a crafted negTokenInit token.
Impact
An attacker can use a specially crafted network packet to cause a vulnerable application to crash.
Solution
The latest version of code in the Heimdal master branch fixes the issue. However, the current stable release 7.7.0 does not include the fix.
Acknowledgements
Thanks to the International Continence Society for reporting this issue.
This document was written by Kevin Stephens.
Vendor Information
Other Information
Date Public:
2022-10-07
Date First Published:
2022-10-07
Date Last Updated:
2022-10-07 19:24 UTC
Document Revision:
1
Recent Posts
-
VU#253266: Keras 2 Lambda Layers Allow Arbitrary Code Injection in TensorFlow Models
-
VU#123335: Multiple programming languages fail to escape arguments properly in Microsoft Windows
-
VU#155143: Linux kernel on Intel systems is susceptible to Spectre v2 attacks
-
VU#421644: HTTP/2 CONTINUATION frames can be utilized for DoS attacks
-
VU#417980: Implementations of UDP-based application protocols are vulnerable to network loops