Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2015-2698
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-13 Nov, 2015 | 03:59
Updated At-12 Apr, 2025 | 10:46

The iakerb_gss_export_sec_context function in lib/gssapi/krb5/iakerb.c in MIT Kerberos 5 (aka krb5) 1.14 pre-release 2015-09-14 improperly accesses a certain pointer, which allows remote authenticated users to cause a denial of service (memory corruption) or possibly have unspecified other impact by interacting with an application that calls the gss_export_sec_context function. NOTE: this vulnerability exists because of an incorrect fix for CVE-2015-2696.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.08.5HIGH
AV:N/AC:M/Au:S/C:C/I:C/A:C
CPE Matches
MIT (Massachusetts Institute of Technology)
mit
>>kerberos_5>>1.14
cpe:2.3:a:mit:kerberos_5:1.14:beta2:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-119Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8273cve@mitre.org
Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2015-11/msg00116.htmlcve@mitre.org
N/A
http://lists.opensuse.org/opensuse-updates/2015-12/msg00124.htmlcve@mitre.org
N/A
http://www.ubuntu.com/usn/USN-2810-1cve@mitre.org
N/A
https://github.com/krb5/krb5/commit/3db8dfec1ef50ddd78d6ba9503185995876a39fdcve@mitre.org
N/A
http://krbdev.mit.edu/rt/Ticket/Display.html?id=8273af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://lists.opensuse.org/opensuse-updates/2015-11/msg00116.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://lists.opensuse.org/opensuse-updates/2015-12/msg00124.htmlaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.ubuntu.com/usn/USN-2810-1af854a3a-2127-422b-91ae-364da2661108
N/A
https://github.com/krb5/krb5/commit/3db8dfec1ef50ddd78d6ba9503185995876a39fdaf854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found