Vulnerabilities > CVE-2021-44758 - NULL Pointer Dereference vulnerability in Heimdal Project Heimdal

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
heimdal-project
CWE-476

Summary

Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept.

Vulnerable Configurations

Part Description Count
Application
Heimdal_Project
125

Common Weakness Enumeration (CWE)