CVE-2006-6144
MIT Kerberos 5 1.5-1.5.1 - Denial of Service via Uninitialized Pointer Free in mechglue
Title source: llmDescription
The "mechglue" abstraction interface of the GSS-API library for Kerberos 5 1.5 through 1.5.1, as used in Kerberos administration daemon (kadmind) and other products that use this library, allows remote attackers to cause a denial of service (crash) via unspecified vectors that cause mechglue to free uninitialized pointers.
References (22)
Core 22
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/31417
Broken Link vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102772-1
Broken Link vendor-advisory
x_refsource_sunalert
http://sunsolve.sun.com/search/document.do?assetkey=1-26-201294-1
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert
http://www.us-cert.gov/cas/techalerts/TA07-009B.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/456409/100/0/threaded
Third Party Advisory vendor-advisory
x_refsource_openpkg
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.006.html
Patch, Vendor Advisory x_refsource_confirm
http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2006-003-mechglue.txt
Broken Link x_refsource_confirm
https://issues.rpath.com/browse/RPL-925
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0112
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/21975
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0111
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23690
Broken Link vendor-advisory
x_refsource_suse
http://lists.suse.com/archive/suse-security-announce/2007-Jan/0004.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1017494
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23706
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23903
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200701-21.xml
Broken Link vendor-advisory
x_refsource_fedora
http://fedoranews.org/cms/node/2375
Broken Link vdb-entry
x_refsource_osvdb
http://osvdb.org/31280
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35151
Third Party Advisory, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/831452
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/23701
Scores
EPSS
0.2193
EPSS Percentile
95.8%
Details
Status
published
Products (1)
mit/kerberos_5
1.5 - 1.5.1
Published
Dec 31, 2006
Tracked Since
Feb 18, 2026