MIT Kerberos 5 – kadmind Change Password Feature Remote Code Execution

Exploit Database
114 阅读

作者： Felipe Ortega

日期： 2011-04-11
类别：
- remote
平台：
- linux
来源：https://www.exploit-db.com/exploits/35606/

source: https://www.securityfocus.com/bid/47310/info

MIT Kerberos is prone to a remote code-execution vulnerability in 'kadmind'.

An attacker may exploit this issue to execute arbitrary code with superuser privileges. Failed attempts will cause the affected application to crash, denying service to legitimate users. A successful exploit will completely compromise affected computers.

MIT Kerberos 5 1.7 and later are vulnerable.

NOTE (April 13, 2011): This BID was originally titled 'MIT Kerberos kadmind Version String Processing Remote Denial Of Service Vulnerability', but has been renamed to better reflect the nature of the issue. 

# nmap -n -sV krb01

last Exploits
MIT Kerberos 5 – kadmind Change Password Feature Remote Code Execution的更多信息

Uniview – Remote Command Execution / Export Config (PoC)：
TeeChart Professional ActiveX Control 2010.0.0.3 – Trusted Integer Dereference (Metasploit)：
Barcodewiz Barcode ActiveX Control 3.29 – Remote HeapSpray (Internet Explorer 6/7)：
CollabNet Subversion Edge Log Parser – HTML Injection：
Cisco UCS Manager 2.1(1b) – Remote Command Injection (Shellshock)：
Actiontec C1000A Modem – Backdoor Account：
Microsoft Internet Explorer 8 – Fixed Col Span ID (Full ASLR + DEP Bypass) (MS12-037)：
pfSense 2 Beta 4 – ‘graph.php’ Multiple Cross-Site Scripting Vulnerabilities：