Vulnerabilities > CVE-2000-0389

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
cygnus
mit
redhat
critical
nessus
exploit available
NVD
Published: 2000-05-16
Updated: 2020-01-21

Summary

Buffer overflow in krb_rd_req function in Kerberos 4 and 5 allows remote attackers to gain root privileges.

Vulnerable Configurations

Part Description Count
Application
Cygnus
2
Application
Mit
3
OS
Redhat
3

Exploit-Db

  • descriptionCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req() Buffer Overflow (3). CVE-2000-0389. Remote exploit for linux p...
    idEDB-ID:19926
    last seen2016-02-02
    modified2000-04-08
    published2000-04-08
    reporterJim Paris
    sourcehttps://www.exploit-db.com/download/19926/
    titleCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req Buffer Overflow 3
  • descriptionCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req() Buffer Overflow (1). CVE-2000-0389. Remote exploit for bsd pla...
    idEDB-ID:19924
    last seen2016-02-02
    modified2000-05-16
    published2000-05-16
    reporterduke
    sourcehttps://www.exploit-db.com/download/19924/
    titleCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req Buffer Overflow 1
  • descriptionCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req() Buffer Overflow (2). CVE-2000-0389. Local exploit for linux pl...
    idEDB-ID:19925
    last seen2016-02-02
    modified2000-05-26
    published2000-05-26
    reporterJim Paris
    sourcehttps://www.exploit-db.com/download/19925/
    titleCygnus Network Security 4.0/KerbNet 5.0,MIT Kerberos 4/5,RedHat 6.2 Compatibility krb_rd_req Buffer Overflow 2

Nessus

NASL familyGain a shell remotely
NASL idKERBEROS_OVERFLOW.NASL
descriptionThe remote klogind seems to be affected by a buffer overflow vulnerability involving its
last seen2020-06-01
modified2020-06-02
plugin id10411
published2000-05-18
reporterThis script is Copyright (C) 2000-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/10411
titleKerberos klogind Remote Overflow

Redhat

advisories
rhsa
idRHSA-2000:025

References