CVE-2000-0390

CVSS 2.0 Score 10.0 of 10 (high)

Details

Published May 16, 2000
Updated: Nov 20, 2024

Summary

CVE-2000-0390 is a significant vulnerability affecting the Kerberos 5 authentication protocol. The issue lies in the krb425_conv_principal function, where a buffer overflow can be exploited. An attacker can remotely take advantage of this flaw to gain root privileges, which represents a major security risk. By manipulating specially crafted input data, an unauthenticated attacker can cause the buffer to overflow and execute arbitrary code, potentially leading to a complete system compromise. This vulnerability requires immediate attention and patching to protect against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Mit Kerberos 5
  • MIT Kerberos

Affected Vendors

  • Massachusetts Institute of Technology