CVE-2000-0389

CVSS 2.0 Score 10.0 of 10 (high)

Details

Published May 16, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0389 is a significant buffer overflow vulnerability affecting both Kerberos 4 and 5 versions. In the krb_rd_req function, there is an improper input validation issue that enables remote attackers to manipulate data and overwrite memory beyond the intended buffer. The successful exploitation of this vulnerability grants attackers root privileges, posing a severe threat to affected systems. It is crucial for organizations using these versions of Kerberos to apply the available patches as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Mit Kerberos 5
  • MIT Kerberos

Affected Vendors

  • Massachusetts Institute of Technology