CVE-2002-1235

Impact:
Critical
Public Date:
2002-10-23

The MITRE CVE dictionary describes this issue as:

The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack.

Find out more about CVE-2002-1235 from the MITRE CVE dictionary dictionary and NIST NVD.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 2.1 RHSA-2002:250 2002-11-07
Red Hat Linux 7.1 RHSA-2003:168 2003-04-29
Red Hat Linux 7.3 RHSA-2002:242 2002-11-07
Red Hat Linux 7.0 RHSA-2002:242 2002-11-07
Red Hat Linux 8.0 RHSA-2002:242 2002-11-07
Red Hat Linux 7.2 RHSA-2002:242 2002-11-07
Red Hat Linux 7.1 RHSA-2002:242 2002-11-07
Red Hat Linux 6.2 RHSA-2002:242 2002-11-07

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.