CVE-2017-17439
Last modified
CVE-2017-17439 is a vulnerability of currently unknown severity. In Heimdal through 7.4, remote unauthenticated attackers are able to crash the KDC by sending a crafted UDP packet containing empty data fields for client name or realm. The parser would unconditionally dereference NULL pointers in that case, leading to a segmentation fault. EPSS estimates a 3.43% chance of exploitation in the next 30 days.
Description
In Heimdal through 7.4, remote unauthenticated attackers are able to crash the KDC by sending a crafted UDP packet containing empty data fields for client name or realm. The parser would unconditionally dereference NULL pointers in that case, leading to a segmentation fault. This is related to the _kdc_as_rep function in kdc/kerberos5.c and the der_length_visible_string function in lib/asn1/der_length.c.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 9.0 |
| Heimdal Project | Heimdal | <= 7.4.0 |
References
- http://www.h5l.org/pipermail/heimdal-discuss/2017-August/000259.htmlThird Party Advisory
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878144Issue Tracking, Mailing List, Third Party Advisory
- https://github.com/heimdal/heimdal/issues/353Patch, Third Party Advisory
- https://www.debian.org/security/2017/dsa-4055Third Party Advisory
- http://www.h5l.org/pipermail/heimdal-discuss/2017-August/000259.htmlThird Party Advisory
- https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=878144Issue Tracking, Mailing List, Third Party Advisory
- https://github.com/heimdal/heimdal/issues/353Patch, Third Party Advisory
- https://www.debian.org/security/2017/dsa-4055Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-17439?
How severe is CVE-2017-17439?
How do I fix CVE-2017-17439?
Are you affected by CVE-2017-17439?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST