VYPR
Critical severity9.8NVD Advisory· Published Mar 19, 2008· Updated Jun 16, 2026

CVE-2008-0062

CVE-2008-0062

Description

KDC in MIT Kerberos 5 (krb5kdc) does not set a global variable for some krb4 message types, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted messages that trigger a NULL pointer dereference or double-free.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • Mit/Kerberos 52 versions
    cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*range: <=1.6.3
    • (no CPE)
  • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*
    • cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*
  • Debian/linux2 versions
    cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

48

News mentions

0

No linked articles in our index yet.