CVE-2001-0094
FreeBSD and NetBSD - Buffer Overflow in Kerberos 4 Authentication Library
Title source: llmDescription
Buffer overflow in kdc_reply_cipher of libkrb (Kerberos 4 authentication library) in NetBSD 1.5 and FreeBSD 4.2 and earlier, as used in Kerberised applications such as telnetd and login, allows local users to gain root privileges.
References (3)
Core 3
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.NetBSD.ORG/pub/NetBSD/misc/security/advisories/NetBSD-SA2000-017.txt.asc
Various Sources vendor-advisory
x_refsource_freebsd
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-01:25.kerberosIV.asc
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5734
Scores
EPSS
0.0005
EPSS Percentile
16.7%
Details
Status
published
Products (1)
freebsd/freebsd
1.5
Published
Feb 12, 2001
Tracked Since
Feb 18, 2026