CVE-2003-0082

EPSS 2.5%

Published: 4/2/2003Modified: 4/28/2026

Description

The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap (aka "buffer underrun").

Affected packages (1)

Debian/krb5from 0, < 1.3.3-2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2003-0082