The RPC library in Kerberos 5 1.4 through 1.4.4, and 1.5 through 1.5.1, as used in Kerberos administration daemon (kadmind) and other products that use this library, calls an uninitialized function pointer in freed memory, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-01-10T00:00:00
Updated: 2024-08-07T20:19:34.415Z
Reserved: 2006-11-28T00:00:00
Link: CVE-2006-6143
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-12-31T05:00:00.000
Modified: 2024-11-21T00:21:58.677
Link: CVE-2006-6143
Redhat
No data.