« List of all CVEs

CVE-2002-0036

Published: 9/1/2004 Last updated: 8/8/2024 Reserved: 1/16/2002

Integer signedness error in MIT Kerberos V5 ASN.1 decoder before krb5 1.2.5 allows remote attackers to cause a denial of service via a large unsigned data element length, which is later used as a negative value.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (2)

conf-gssapi krb

Products affected (1)

Product Vendor Version
n/a n/a < fd70e2019bfbcb0ed90c5e23839bf510ce6acf8f

References (40)