CVE-2018-5710 is a vulnerability in MIT Kerberos
Published on January 16, 2018

An issue was discovered in MIT Kerberos 5 (aka krb5) through 1.16. The pre-defined function "strlen" is getting a "NULL" string as a parameter value in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c in the Key Distribution Center (KDC), which allows remote authenticated users to cause a denial of service (NULL pointer dereference) via a modified kadmin client.

NVD

Products Associated with CVE-2018-5710

Want to know whenever a new CVE is published for MIT Kerberos? stack.watch will email you.

MIT Kerberos

Exploit Probability

EPSS

0.56%

Percentile

67.96%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-5710 is a vulnerability in MIT KerberosPublished on January 16, 2018

Products Associated with CVE-2018-5710

Exploit Probability

CVE-2018-5710 is a vulnerability in MIT Kerberos
Published on January 16, 2018