Double Free Vulnerabilities in ASN.1 Decoders of MIT Kerberos 5 (krb5) 1.3.4 and Earlier

Double Free Vulnerabilities in ASN.1 Decoders of MIT Kerberos 5 (krb5) 1.3.4 and Earlier

CVE-2004-0642 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Double free vulnerabilities in the error handling code for ASN.1 decoders in the (1) Key Distribution Center (KDC) library and (2) client library for MIT Kerberos 5 (krb5) 1.3.4 and earlier may allow remote attackers to execute arbitrary code.

Learn more about our Cis Benchmark Audit For Mit Kerberos.